Question 1

The use of proximity card to gain access to a building is an example of what type of security control?

Options :

A : Legal

B : Logical

C : Physical

D : Procedural

Answer: C

Question 2

In fault-tolerant systems, what do rollback capabilities permit?

Options :

A : Restoring the system to a previous functional state

B : Identifying the error that caused the problem

C : Allowing the system to an in a reduced manner

D : Isolating the error that caused the problem

Answer: A

Question 3

Which of the following is the PRIMARY reason for employing physical security personnel at entry points in facilities where card access is in operation?

Options :

A : To verify that only employees have access to the facility.

B : To identify present hazards requiring remediation.

C : To monitor staff movement throughout the facility.

D : To provide a safe environment for employees.

Answer: D

Question 4

Commercial off-the-shelf (COTS) software presents which of the following additional security concerns?

Options :

A : Vendors take on the liability for COTS software vulnerabilities.

B : In-house developed software is inherently less secure.

C : Exploits for COTS software are well documented and publicly available.

D : COTS software is inherently less secure.

Answer: C

Question 5

Which of the following BEST mitigates a replay attack against a system using identity federation and Security Assertion Markup Language (SAML) implementation?

Options :

A : Two-factor authentication

B : Digital certificates and hardware tokens

C : Timed sessions and Secure Socket Layer (SSL)

D : Passwords with alpha-numeric and special characters

Answer: C