ISC2 ISSAP CISSP-ISSAP Exam Practice Test Instant Access

Question 1

Which of the following statements best describes a certification authority?

AA certification authority is a technique to authenticate digital documents by using computer cryptography.

BA certification authority is a type of encryption that uses a public key and a private key pair for data encryption.

CA certification authority is an entity that issues digital certificates for use by other parties.

DA certification authority is a type of encryption that uses a single key to encrypt and decrypt data.

Answer : C

Question 2

Adam works as a Security Analyst for Umbrella Inc. CEO of the company ordered him to implement two-factor authentication for the employees to access their networks. He has told him that he would like to use some type of hardware device in tandem with a security or identifying pin number. Adam decides to implement smart cards but they are not cost effective. Which of the following types of hardware devices will Adam use to implement two-factor authentication?

ABiometric device

BOne Time Password

CProximity cards

DSecurity token

Answer : D

Question 3

You work as a Network Administrator for NetTech Inc. You want to have secure communication on the company's intranet. You decide to use public key and private key pairs. What will you implement to accomplish this?

AMicrosoft Internet Information Server (IIS)

BVPN

CFTP server

DCertificate server

Answer : D

Question 4

Which of the following are the countermeasures against a man-in-the-middle attack? Each correct answer represents a complete solution. Choose all that apply.

AUsing public key infrastructure authentication.

BUsing basic authentication.

CUsing Secret keys for authentication.

DUsing Off-channel verification.

Answer : A, C, D

Question 5

Which of the following attacks allows the bypassing of access control lists on servers or routers, and helps an attacker to hide? Each correct answer represents a complete solution. Choose two.

ADNS cache poisoning

BMAC spoofing

CIP spoofing attack

DDDoS attack

Answer : B, C

Question 6

IPsec VPN provides a high degree of data privacy by establishing trust points between communicating devices and data encryption. Which of the following encryption methods does IPsec VPN use? Each correct answer represents a complete solution. Choose two.

AMD5

BLEAP

CAES

D3DES

Answer : C, D

Question 7

Which of the following categories of access controls is deployed in the organization to prevent all direct contacts with systems?

ADetective access control

BPhysical access control

CTechnical access control

DAdministrative access control

Answer : B

ISC2 Information Systems Security Architecture Professional ISSAP CISSP-ISSAP Exam Practice Test