CIW 1D0-571 Exam Questions Instant Access

Question 1

Which of the following describes the practice of stateful multi-layer inspection?

AUsing a VLAN on a firewall to enable masquerading of private IP addresses

BPrioritizing voice and video data to reduce congestion

CInspecting packets in all layers of the OSI/RM with a packet filter

DUsing Quality of Service (QoS) on a proxy-oriented firewall

Answer : C

Question 2

Which of the following is considered to be the most secure default firewall policy, yet usually causes the most work from an administrative perspective?

AConfiguring the firewall to respond automatically to threats

BBlocking all access by default, then allowing only necessary connections

CConfiguring the firewall to coordinate with the intrusion-detection system

DAllowing all access by default, then blocking only suspect network connections

Answer : B

Question 3

Which of the following is most likely to pose a security threat to a Web server?

ACGI scripts

BDatabase connections

CFlash or Silverlight animation files

DLDAP servers

Answer : A

Question 4

Which of the following is most likely to address a problem with an operating system's ability to withstand an attack that attempts to exploit a buffer overflow?

AFirewall

BSoftware update

CIntrusion detection system

DNetwork scanner

Answer : B

Question 5

Which of the following is a primary weakness of asymmetric-key encryption?

AIt is slow because it requires extensive calculations by the computer.

BIt can lead to the corruption of encrypted data during network transfer.

CIt is reliant on the Secure Sockets Layer (SSL) standard, which has been compromised.

DIt is difficult to transfer any portion of an asymmetric key securely.

Answer : A

Question 6

What is the first tool needed to create a secure networking environment?

AUser authentication

BConfidentiality

CSecurity policy

DAuditing

Answer : C

Question 7

Consider the following diagram:

Which type of attack is occurring?

APolymorphic virus-based attack

BDenial-of-service attack

CDistributed denial-of-service attack

DMan-in-the-middle attack using a packet sniffer

Answer : C

CIW Web Security Associate 1D0-571 Exam Questions