1D0-671無料問題集「CIW Web Security Associate」

質問 1

Which of the following can help you authoritatively trace a network flooding attack?

（A）Router logs

（B）Firewall logs

（C）Your ISP

（D）Ping

正解：C 解答を投票する

質問 2

Which type of encryption poses challenges to key transport?

（A）Symmetric-key encryption

（B）Hash encryption

（C）Asymmetric-key encryption

（D）Diffie-Hellman

正解：A 解答を投票する

質問 3

Which step in security policy implementation ensures that security policy will change as technology advances?

（A）Log, test and evaluate.

（B）Secure each resource and service.

（C）Publish the security policy.

（D）Repeat the process and keep current.

正解：D 解答を投票する

質問 4

A security breach has occurred in which a third party was able to obtain and misuse legitimate authentication information. After investigation, you determined that the specific cause for the breach was that end users have been placing their passwords underneath their keyboards.
Which step will best help you resolve this problem?

（A）Set passwords to expire at specific intervals and establish mandatory continual training sessions.

（B）Change all passwords on the company servers immediately and inform end users that their passwords will be changing on a regular basis.

（C）Inform end users that their passwords will be changing on a regular basis and require more complex passwords.

（D）Discipline specific end users as object lessons to the rest of the staff and reset passwords on all systems immediately.

正解：A 解答を投票する

質問 5

The best way to thwart a dictionary attack is by enforcing a:

（A）firewall configuration policy.

（B）proxy server policy.

（C）restricted access policy.

（D）strong password policy.

正解：D 解答を投票する

質問 6

An application is creating hashes of each file on an attached storage device.
Which of the following will typically occur during this process?

（A）A reduction in the amount of time it takes for the system to respond to requests

（B）Increased risk of an attack

（C）Reduced risk of an attack

（D）An increase in the amount of time it takes for the system to respond to requests

正解：D 解答を投票する

質問 7

Which of the following standards is used for digital certificates?

（A）X.509

（B）RC5

（C）DES

（D）Diffie-Hellman

正解：A 解答を投票する

質問 8

A flaw is discovered in an application. Before a patch is available, this vulnerability is used to gain access to sensitive data.
What type of attack is being described?

（A）Dictionary

（B）Social engineering

（C）Zero day

（D）Zero day

正解：D 解答を投票する

質問 9

Which ICMP message type is sent whenever the destination cannot handle the amount of traffic being received?

（A）Echo Reply

（B）Redirect Message

（C）Source Quench

（D）Source Quench

正解：D 解答を投票する

質問 10

Which of the following activities is the most effective at keeping the actions of nae end users from putting the company's physical and logical resources at risk?

（A）Conducting a training session at the time of hire

（B）Reconfiguring the network firewall

（C）Configuring network intrusion-detection software to monitor end user activity

（D）Assembling a team of security professionals to monitor the network

正解：A 解答を投票する

1D0-671 無料問題集「CIW Web Security Associate」

弊社を連絡する

関連リンク

トップ試験