CompTIA SY0-601 Security+ Take Ten Challenge #4Step 1 of 1010%4-1: Which of the following threat actors would be MOST motivated by profit? Nation state Organized crime Hacktivist Shadow IT 4-2: Which of the following would use rules to limit API communication? VPN TLS SSH WAF NAT 4-3: Which of the following allows the browser to check for certificate revocation? CA CN TLS CSR OCSP 4-4: Which of the following provides a knowledge base of adversary tactics and techniques? Diamond model ISO 31000 SSAE SOC 2 MITRE ATT&CK framework EAP-TTLS 4-5: Which security control would be MOST associated with a backup generator? Detective Preventive Compensating Managerial Physical 4-6: Which of the following would be the BEST way to randomize multiple hashes of the same data? SDN FDE Key exchange VPN Salt 4-7: Which of the following would determine which laws would apply to stored data? Data-at-rest Masking Information Rights Management Sovereignty Diffusion 4-8: Which of the following would be the MOST secure way of viewing traffic statistics from a router? SNMPv3 SMB Telnet FTPS RDP 4-9: A security administrator would like to restrict application use to a predefined set of apps. Which of the following would BEST describe this security type? Deny list Segmentation DLP Approved list Quarantine 4-10: A company has determined that laptops valued at $50,000 have been stolen over the last calendar year. Which of the following would describe this value? SLE Inherent risk Risk appetite ARO ALE
