Information Systems Security Architecture Professional (ISSAP) Free Practice Test

Question 1

Which of the following is the most secure method of authentication?

A. Biometrics

B. Anonymous

C. Smart card

D. Username and password

Correct Answer: A

Question 2

Which of the following methods for identifying appropriate BIA interviewees' includes examining the organizational chart of the enterprise to understand the functional positions?

A. Organizational process models

B. Executive management interviews

C. Overlaying system technology

D. Organizational chart reviews

Correct Answer: D

Question 3

In which of the following cryptographic attacking techniques does an attacker obtain encrypted messages that have been encrypted using the same encryption algorithm?

A. Ciphertext only attack

B. Chosen ciphertext attack

C. Chosen plaintext attack

D. Known plaintext attack

Correct Answer: A

Question 4

Which of the following are types of access control attacks? Each correct answer represents a complete solution. Choose all that apply.

A. Spoofing

B. Dictionary attack

C. Mail bombing

D. Brute force attack

Correct Answer: A,C,D

Question 5

Which of the following tenets does the CIA triad provide for which security practices are measured? Each correct answer represents a part of the solution. Choose all that apply.

A. Availability

B. Confidentiality

C. Integrity

D. Accountability

Correct Answer: A,B,C

Question 6

Which of the following protocols provides certificate-based authentication for virtual private networks (VPNs)?

A. HTTPS

B. PPTP

C. L2TP

D. SMTP

Correct Answer: C

Question 7

Which of the following is an electrical event shows that there is enough power on the grid to prevent from a total power loss but there is no enough power to meet the current electrical demand?

A. Power Spike

B. Blackout

C. Power Surge

D. Brownout

Correct Answer: D

Question 8

Which of the following firewalls inspects the actual contents of packets?

A. Packet filtering firewall

B. Application-level firewall

C. Circuit-level firewall

D. Stateful inspection firewall

Correct Answer: B

Question 9

You work as a Network Administrator for Net Perfect Inc. The company has a Linux-based network. You need to configure a firewall for the company. The firewall should be able to keep track of the state of network connections traveling across the network. Which of the following types of firewalls will you configure to accomplish the task?

A. An application firewall

B. A network-based application layer firewall

C. Stateful firewall

D. Host-based application firewall

Correct Answer: C

Question 10

Maria works as a Network Security Officer for Gentech Inc. She wants to encrypt her network traffic. The specific requirement for the encryption algorithm is that it must be a symmetric key block cipher. Which of the following techniques will she use to fulfill this requirement?

A. IDEA

B. PGP

C. DES

D. AES

Correct Answer: C

Question 11

Which of the following components come under the network layer of the OSI model? Each correct answer represents a complete solution. Choose two.

A. Firewalls

B. Routers

C. MAC addresses

D. Hub

Correct Answer: A,B

Question 12

Which of the following SDLC phases consists of the given security controls: Misuse Case Modeling Security Design and Architecture Review Threat and Risk Modeling Security Requirements and Test Cases Generation

A. Requirements Gathering

B. Design

C. Deployment

D. Maintenance

Correct Answer: B

Question 13

The network you administer allows owners of objects to manage the access to those objects via access control lists. This is an example of what type of access control?

A. MAC

B. CIA

C. DAC

D. RBAC

Correct Answer: C

Welcome to TestSimulate

ISC Information Systems Security Architecture Professional (ISSAP) Free Practice Test