CISSP Practice Test

Which of the following is the BEST mitigation from phishing attacks?

A.

Network activity monitoring

B.

Security awareness training

C.

Corporate policy and procedures

D.

Strong file and directory permissions

When transmitting information over public networks, the decision to encrypt it should be based on

A.

the estimated monetary value of the information.

B.

whether there are transient nodes relaying the transmission.

C.

the level of confidentiality of the information.

D.

the volume of the information.

Which one of the following transmission media is MOST effective in preventing data interception?

A.

Microwave

B.

Twisted-pair

C.

Fiber optic

D.

Coaxial cable

Which of the following defines the key exchange for Internet Protocol Security (IPSec)?

A.

Secure Sockets Layer (SSL) key exchange

B.

Internet Key Exchange (IKE)

C.

Security Key Exchange (SKE)

D.

Internet Control Message Protocol (ICMP)

What is the BEST approach to addressing security issues in legacy web applications?

A.

Debug the security issues

B.

Migrate to newer, supported applications where possible

C.

Conduct a security assessment

D.

Protect the legacy application with a web application firewall