System Security Certified Practitioner (SSCP) (SSCP) Free Practice Test

Question 1

The NT Event Viewer holds which of the following types of logs?

A. Application

B. All three of the types listed

C. System

D. Security

Correct Answer: B

Question 2

Which of the following was developed by the National Computer Security Center (NCSC) for the US Department of Defense ?

A. NIACAP

B. DIACAP

C. ITSEC

D. TCSEC

Correct Answer: D

Explanation: Only visible for TestSimulate members. You can sign-up / login (it's free).

Question 3

The ability to identify and audit a user and his / her actions is known as ____________.

A. Accessibility

B. Journaling

C. Forensics

D. Auditing

E. Accountability

Correct Answer: E

Question 4

Your ATM card is a form of two-factor authentication for what reason?

A. It combines something you have with something you know

B. It combines something you control with something you know

C. It combines something you are with something you know

D. It combines something you are with something you have

Correct Answer: A

Question 5

Which of the following defines session hijacking?

A. Making compute resources unavailable.

B. Compromising the session between two machines is taken over

C. Creation of random addresses for each network packet

D. Exploitation of the trust relationship in the Internet Protocol

Correct Answer: B

Question 6

Which of the following assertions is NOT true about pattern matching and anomaly detection in intrusion detection?

A. A pattern matching IDS can only identify known attacks

B. An anomaly-based engine develops baselines of normal traffic activity and throughput, and alerts on deviations from these baselines

C. Stateful matching scans for attack signatures by analyzing individual packets instead of traffic streams

D. Anomaly detection tends to produce more data

Correct Answer: C

Explanation: Only visible for TestSimulate members. You can sign-up / login (it's free).

Question 7

In discretionary access environments, which of the following entities is authorized to grant information access to other people?

A. Security Manager

B. Manager

C. Group Leader

D. Data Owner

Correct Answer: D

Explanation: Only visible for TestSimulate members. You can sign-up / login (it's free).

Question 8

_________ is the act of a user professing an identity to a system.

A. Validation

B. Authentication

C. Confirmation

D. Identification

Correct Answer: D

Question 9

A virus is considered to be "in the ______ " if it has been reported as replicating and causing harm to computers.

A. Zoo

B. Cage

C. Jungle

D. Fire

E. Wild

Correct Answer: E

Question 10

Which type of attack is based on the probability of two different messages using the same hash function producing a common message digest?

A. Birthday attack

B. Statistical attack

C. Differential cryptanalysis

D. Differential linear cryptanalysis

Correct Answer: A

Explanation: Only visible for TestSimulate members. You can sign-up / login (it's free).

Question 11

Which of the following is an IP address that is private (i.e. reserved for internal networks, and not a valid address to use on the Internet)?

A. 192.168.42.5

B. 192.1.42.5

C. 192.175.42.5

D. 192.166.42.5

Correct Answer: A

Explanation: Only visible for TestSimulate members. You can sign-up / login (it's free).

Welcome to TestSimulate

ISC System Security Certified Practitioner (SSCP) (SSCP) Free Practice Test