CompTIA SY0-501 Security+ Take Ten Challenge #8Step 1 of 1010%8-1: A web site owner would like to provide a method for users to verify downloaded files. Which of the following would be the BEST choice for this requirement? AES MD5 ECB Blowfish Diffie-Hellman 8-2: An encrypted document was downloaded by an attacker, and four hours later the decrypted version of the document was posted online. Which of the following would be the MOST likely reason for this security issue? Untrained users Race condition Invalid digital signature End-of-life vulnerability Weak cipher 8-3: A security administrator would like to maintain a centralized record of events from all switches, routers, and servers. Which of the following would provide this information? Firewall Network access control SIEM Proxy Data loss prevention 8-4: A large enterprise needs a secure method of backing up and maintaining web server encryption keys. Which of the following would BEST fit this requirement? MDM GCM UTM TPM HSM 8-5: During login, a user is required to enter a username, password, and group of numbers from a phone app. Every thirty seconds, the numbers change to a different random group of values. Which of the following would BEST describe this authentication factor? BYOD Hash TOTP Something you do Code signing 8-6: Which of the following would be the LEAST volatile? File in the /temp folder Network topology CPU register ARP table Application executable file 8-7: Which of the following certificate formats would be the BEST choice to send as an email message? PEM PKCS #12 RSA MD5 DER 8-8: Which of the following would BEST describe malware that resides on a user's computer and proxies all incoming and outgoing traffic? Spoofing Replay attack Phishing DoS Man-in-the-browser 8-9: A security administrator would like to create a graphical map of the local workstations and servers. Which of the following tools would be the BEST choice for this task? Data sanitization tool Network scanner Vulnerability scanner Steganography utility Exploitation framework 8-10: A computer in a data center has been labeled as EAL4. Which of the following would BEST describe this system? The operating system meets a specific security baseline This computer is running the fourth version of the system image The computer is only accessible during certain times of the day This computer receives patches every four days The computer is not connected to the Internet
