Home
About
Contact Us

Core 1 A+ Training
Core 2 A+ Training
Network+ Training
Security+ Training
Calendar
Members

CompTIA SY0-501 Security+ Take Ten Challenge #8

November 20, 2020

Step 1 of 10

10%

8-1: A web site owner would like to provide a method for users to verify downloaded files. Which of the following would be the BEST choice for this requirement?
- AES
- Blowfish
- ECB
- MD5
- Diffie-Hellman

8-2: An encrypted document was downloaded by an attacker, and four hours later the decrypted version of the document was posted online. Which of the following would be the MOST likely reason for this security issue?
- Invalid digital signature
- Race condition
- Untrained users
- End-of-life vulnerability
- Weak cipher

8-3: A security administrator would like to maintain a centralized record of events from all switches, routers, and servers. Which of the following would provide this information?
- Firewall
- Proxy
- Data loss prevention
- SIEM
- Network access control

8-4: A large enterprise needs a secure method of backing up and maintaining web server encryption keys. Which of the following would BEST fit this requirement?
- UTM
- GCM
- MDM
- TPM
- HSM

8-5: During login, a user is required to enter a username, password, and group of numbers from a phone app. Every thirty seconds, the numbers change to a different random group of values. Which of the following would BEST describe this authentication factor?
- BYOD
- Hash
- TOTP
- Something you do
- Code signing

8-6: Which of the following would be the LEAST volatile?
- ARP table
- Network topology
- CPU register
- Application executable file
- File in the /temp folder

8-7: Which of the following certificate formats would be the BEST choice to send as an email message?
- MD5
- PEM
- RSA
- DER
- PKCS #12

8-8: Which of the following would BEST describe malware that resides on a user's computer and proxies all incoming and outgoing traffic?
- Man-in-the-browser
- Phishing
- Replay attack
- DoS
- Spoofing

8-9: A security administrator would like to create a graphical map of the local workstations and servers. Which of the following tools would be the BEST choice for this task?
- Network scanner
- Data sanitization tool
- Vulnerability scanner
- Steganography utility
- Exploitation framework

8-10: A computer in a data center has been labeled as EAL4. Which of the following would BEST describe this system?
- This computer is running the fourth version of the system image
- The operating system meets a specific security baseline
- This computer receives patches every four days
- The computer is not connected to the Internet
- The computer is only accessible during certain times of the day

Category: SY0-501 Take Ten Challenges

Comments are closed.

« CompTIA SY0-501 Security+ Take Ten Challenge #6

CompTIA SY0-501 Security+ Take Ten Challenge #7 »

Categories

Free CompTIA A+ Training
Free CompTIA Network+ Training
Free CompTIA Security+ Training
- CompTIA Security+ SY0-501
- Security+ Study Group Archive
Professor Messer After Class

Recent Posts

Today’s Core 2 CompTIA A+ Pop Quiz: That one got some air
Today’s SY0-501 Security+ Pop Quiz: What’s that noise?
Today’s Core 1 CompTIA A+ Pop Quiz: It’s all in this cardboard box
How to Install dig in Windows 10
Today’s Core 2 CompTIA A+ Pop Quiz: This job is tiring

Site Information

Contact Us
About Messer Studios
Privacy Policy
Terms of Service

Connect

© 2020 Messer Studios, LLC. All rights reserved.
"Professor Messer" and the Professor Messer logo are registered trademarks of Messer Studios, LLC.

X