200-201 Online Practice Questions and Answers

How does a certificate authority impact security?

A. It validates client identity when communicating with the server.

B. It authenticates client identity when requesting an SSL certificate.

C. It authenticates domain identity when requesting an SSL certificate.

D. It validates the domain identity of the SSL certificate.

When an event is investigated, which type of data provides the investigate capability to determine if data exfiltration has occurred?

A. full packet capture

B. NetFlow data

C. session data

D. firewall logs

A system administrator is ensuring that specific registry information is accurate.

Which type of configuration information does the HKEY_LOCAL_MACHINE hive contain?

A. file extension associations

B. hardware, software, and security settings for the system

C. currently logged in users, including folders and control panel settings

D. all users on the system, including visual settings

Which metric in CVSS indicates an attack that takes a destination bank account number and replaces it with a different bank account number?

A. integrity

B. confidentiality

C. availability

D. scope

A security expert is working on a copy of the evidence, an ISO file that is saved in CDFS format. Which type of evidence is this file?

A. CD data copy prepared in Windows

B. CD data copy prepared in Mac-based system

C. CD data copy prepared in Linux system

D. CD data copy prepared in Android-based system

What does cyber attribution identify in an investigation?

A. cause of an attack

B. exploit of an attack

C. vulnerabilities exploited

D. threat actors of an attack

What is the principle of defense-in-depth?

A. Agentless and agent-based protection for security are used.

B. Several distinct protective layers are involved.

C. Access control models are involved.

D. Authentication, authorization, and accounting mechanisms are used.

Which security technology allows only a set of pre-approved applications to run on a system?

A. application-level blacklisting

B. host-based IPS

C. application-level whitelisting

D. antivirus

Which metric is used to capture the level of access needed to launch a successful attack?

A. privileges required

B. user interaction

C. attack complexity

D. attack vector

What are the three critical security principles or goals of the CIA triad?

A. Protect the confidentiality of data, and ensure that protected data is unaltered at all stages and available for permitted requesters.

B. Validate the copyright of the data, and ensure that individual data owners are protected with a defense-in-depth approach.

C. Ensure that the connections are safe and the data delivery is improved continuously with appropriate monitoring and cross-checks.

D. Implement data tags to identify critical assets and data for preserving the secretness, and develop policies and procedures for accessing data.