Swift CSP-Assessor Exam Practice Test Instant Access

Question 1

Which encryption methods are used to secure the communications between the SNL host and HSM boxes?

ANTLS and SSH

BTelnet and SSL

CNTLS and Telnet

DMPLS and SSL

Answer : A

Question 2

Application Hardening basically applies the following principles. (Choose all that apply.)

ALeast Privileges

BAccess on a need to have

CReduced footprint for less potential vulnerabilities

DEnhanced Straight Through Processing

Answer : A, B, C

Question 3

The Swift HSM boxes:

AAre located at the network partner premises and managed by Swift

BAre located at the Swift user premises and managed by Swift

CAre located at the Swift user premises and managed by the Swift user

DAre located at the network partner premises and managed by Swift the network partner

Answer : C

Question 4

Which of the following statements best describe valid implementations when implementing control 2.9 Transaction Business Controls? (Choose all that apply.)

AMultiple measures must be implemented by the Swift user to validate the flows of transactions are in the bounds of the normal expected business

BA customer designed implementation or a combination of different measures are deemed valid if they sufficiently mitigate the control risks

CReliance on a recent business assessment or regulator response confirming the effectiveness of the control (as an example CPMI's_ requirement) is especially poignant to this control

DAny solutions is acceptable so long as the CISO approves the implementation

Answer : A, B, C

Question 5

The internet connectivity restriction control prevents having internet access on any CSCE m-scope components.

ATRUE

BFALSE

Answer : B

Question 6

Select the correct statement(s).

AThe public and private keys of a Swift certificate are stored on the Hardware Security Module

BThe certificate stored on the Swift Hardware Security Module is used during the decryption operation of a message

CThe decryption operation uses the encryption private key of the receiver

DTo verify the signature the SwiftNetLink uses the signing private key of the receiver

Answer : A, C

Question 7

What must a Swift user implement to comply with a CSCF security control?

AA solution that maps the implementation guidelines described for a controls in scope components

BA solution that meets the control objectives and addresses the risk drivers for the in scope components)

Answer : B

Swift Customer Security Programme Assessor Certification CSP-Assessor Exam Practice Test