[2026年03月]更新のEC-COUNCIL 312-38日本語問題集とリアルな試験問題 [Q109-Q132]

Share

[2026年03月]更新のEC-COUNCIL 312-38日本語問題集とリアルな試験問題

2026年最新の312-38日本語のPDF最近更新された問題

質問 # 109
ブレンダンは、ネットワークにハードウェアベースのRAIDシステムを実装したいと考えています。彼は、システムのアーキテクチャ設定に適したRAMタイプを選択することを考えています。彼が興味を持っているタイプは、最大20nsのアクセス時間を提供します。彼はRAIDシステム用にどのタイプのRAMを選択しますか?

  • A. NANDフラッシュメモリ
  • B. SRAM
  • C. NVRAM
  • D. SDRAM

正解:B

解説:
SRAM, or Static Random-Access Memory, is known for its low access time, typically around 20 ns, which makes it suitable for applications requiring high speed, such as cache memory in computers or, in this case, a RAID system. SRAM is faster than DRAM because it does not need to be refreshed as often, which is why it's used where speed is critical. Although SRAM is more expensive and has less density compared to other types of RAM, its speed advantage makes it the preferred choice for Brendan's RAID system requirements.
References: The characteristics of SRAM are well-documented in computer architecture and hardware literature, aligning with the Certified Network Defender (CND) course's focus on understanding different types of memory for network security purposes. The ECCouncil's CND materials and study guides provide information on various hardware components and their relevance to network security, which includes the selection of appropriate RAM types for different systems123.


質問 # 110
新しく参加したネットワーク管理者は、起こりうるリスクに対して組織を評価したいと考えています。彼は、組織が活動のリスクを測定するのに役立つa________identifiedを持っていないことに気づきました。

  • A. リスクマトリックス
  • B. リスクの重大度
  • C. リスクレベル
  • D. 主要なリスク指標

正解:D


質問 # 111
AWSが提供するサポートされているサービスのアカウントアクティビティとイベントを表示するのに役立つのは次のうちどれですか?

  • A. AWS CloudFormation
  • B. AWS CloudTrial
  • C. AWS CloudHSM
  • D. AWS Certificate Manager

正解:B

解説:
AWS CloudTrail is the service that enables governance, compliance, operational auditing, and risk auditing of your AWS account. It allows you to log, continuously monitor, and retain account activity related to actions across your AWS infrastructure. CloudTrail provides event history of your AWS account activity, including actions taken through the AWS Management Console, AWS SDKs, command line tools, and other AWS services. This event history simplifies security analysis, resource change tracking, and troubleshooting. It is specifically designed for reviewing account activity and events for supported services made by AWS.


質問 # 112
Eldenは、IT企業でネットワーク管理者として働いています。彼の組織は、ゲストOSが実行中の仮想環境を認識し、リソースを要求するためにホストマシンと通信する仮想化手法を選択しました。 Eldenの組織によって実装された仮想化技術を特定します。

  • A. 準仮想化
  • B. 完全仮想化
  • C. ハイブリッド仮想化
  • D. ハードウェア支援による仮想化

正解:D


質問 # 113
Windowsリソースへのユーザーのアクセスを制御する責任があるWindowsセキュリティコンポーネントはどれですか?

  • A. Security Accounts Manager (SAM)
  • B. Local Security Authority Subsystem (LSASS)
  • C. Security Reference Monitor (SRM)
  • D. Network Logon Service (Netlogon)

正解:C

解説:
The Security Reference Monitor (SRM) is the core component in Windows operating systems responsible for controlling access to resources. It enforces security policies and checks whether a user's request to access a resource is allowed by the system's security policy. SRM operates in the kernel mode and ensures that access rights and permissions are properly enforced, making it a critical part of the Windows security architecture for resource access control.


質問 # 114
ネットワークスニッフィングを通じて取得できる情報は次のうちどれですか? (該当するものをすべて選択)

  • A. Telnetパスワード
  • B. Syslogトラフィック
  • C. DNSトラフィック
  • D. プログラミングエラー

正解:A、B、C


質問 # 115
攻撃者は、Windows 7 コンピューターのパスワード ハッシュにアクセスできます。攻撃者がパスワードを明らかにするために使用できる攻撃は次のうちどれですか?

  • A. 辞書攻撃
  • B. レインボーテーブル
  • C. ブルートフォース
  • D. XSS

正解:B

解説:
In the context of password hashes on a Windows 7 computer, a Rainbow Table attack is a feasible method an attacker might use to reveal passwords. This type of attack utilizes precomputed tables known as rainbow tables that contain hash values for every possible combination of characters. An attacker with access to password hashes can use these tables to look up the corresponding plaintext passwords. The effectiveness of rainbow tables stems from their ability to reverse cryptographic hash functions, which are used to store passwords securely. Since Windows 7 uses NTLM hashes, which are known to be vulnerable to rainbow table attacks, this method is particularly relevant12.
References: The explanation draws upon the known vulnerabilities of NTLM hash functions in Windows 7 and the general principles of rainbow table attacks as discussed in security literature12.


質問 # 116
次のフィルターのうち、SYN / FIN攻撃を検出するために使用されるのはどれですか?

  • A. tcp.flags == 0x002
  • B. tcp.flags == 0x001
  • C. tcp.flags == 0x004
  • D. tcp.flags == 0x003

正解:D

解説:
The filter tcp.flags==0x003 is used to detect SYN/FIN attacks. This filter is designed to identify packets where both the SYN and FIN flags are set, which is an unusual combination and indicative of a potential SYN/FIN attack. In a typical TCP communication, a SYN flag is used to initiate a connection, and a FIN flag is used to gracefully close a connection. Therefore, seeing both flags set in a single packet suggests a malformed or malicious packet, which is characteristic of a SYN/FIN attack.


質問 # 117
Johnは、ネットワークに脅威を与える可能性のある内部アプリケーションの脆弱性を正常に修正しました。彼は修正された脆弱性の存在についてアプリケーションをスキャンしています。このプロセスはa________と呼ばれ、_________に準拠する必要があります。

  • A. 緩和策、セキュリティポリシー
  • B. リスク分析、リスクマトリックス
  • C. 脆弱性スキャン、リスク分析
  • D. 検証、セキュリティポリシー

正解:D

解説:
The process of scanning an application for the existence of a remediated vulnerability is known as verification. This step is crucial to ensure that the vulnerability has been properly addressed and that the application is no longer susceptible to the previously identified threat. Verification must adhere to the organization's security policies, which provide the framework and guidelines for all security-related activities.
These policies ensure that the verification process is conducted in a manner that is consistent with the organization's overall security posture and compliance requirements.
References: The Certified Network Defender (CND) program emphasizes the importance of adhering to security policies during all stages of network defense, including the verification of remediated vulnerabilities. This ensures that the network remains secure and that all defense measures are in line with the established security protocols123.


質問 # 118
会社のネットワークを保護するために、ネットワーク管理者のティムは、すべての受信および送信ネットワーク トラフィックに疑わしいパターンがないか検査するセキュリティ デバイスを設置しました。このデバイスは、そのような不審なアクティビティを見つけた場合に警告を発するように設定されていました。ティムが設置したネットワーク セキュリティ デバイスの種類を特定しますか?

  • A. ファイアウォール
  • B. ハニーポット
  • C. プロキシサーバー
  • D. 侵入検知システム (IDS)

正解:D

解説:
The network security device described is an Intrusion Detection System (IDS). An IDS monitors all inbound and outbound network traffic for suspicious patterns and is configured to alert the network administrator if it detects any such activity. This aligns with the primary function of an IDS, which is to serve as a monitoring system, not necessarily to block traffic like a firewall or act as a decoy like a honeypot. It differs from a proxy server, which would primarily manage and forward web requests on behalf of clients. The IDS operates by analyzing traffic and identifying potential threats based on known signatures or anomalies in network behavior, thereby enabling the network admin to take appropriate action to secure the network12.
References: The explanation provided is based on standard network security practices and the functionalities of an Intrusion Detection System (IDS) as outlined in network security resources. For detailed and specific references, please consult the latest Certified Network Defender (CND) study materials and documents provided by the EC-Council.


質問 # 119
組織の IT インフラストラクチャのセキュリティを効果的に管理する責任を負う IT セキュリティ チームを何と呼びますか?

  • A. 黄色のチーム
  • B. 青チーム
  • C. グレー チーム
  • D. レッドチーム

正解:B

解説:
In the context of cybersecurity, the Blue Team refers to the group responsible for defending an organization's IT infrastructure. This team's primary focus is on internal security measures, maintaining defensive protocols, and ensuring that the organization's systems and data are protected against cyber threats. They are tasked with the effective management of security controls, incident response, and the overall maintenance of the organization's cybersecurity posture.
References:
* The Certified Network Defender (CND) course by EC-Council includes modules that cover network security controls, protocols, perimeter appliances, secure IDS, VPN, and firewall configuration, which are all relevant to the functions of a Blue Team.
* The CND curriculum also emphasizes the importance of understanding and responding to cyber threats, which aligns with the Blue Team's role in an organization's IT security framework.


質問 # 120
IRチームとネットワーク管理者は、ネットワーク上のマルウェアインシデントを正常に処理しました。チームは現在、マルウェアインシデントの将来の発生を回避するための対策ガイドラインを準備しています。
将来のマルウェアインシデントに対処するために追加する必要がある対策は次のうちどれですか? (該当するものをすべて選択)

  • A. 強力な認証スキームの実装
  • B. 会社のセキュリティポリシーの遵守
  • C. 強力なパスワードポリシーの実装
  • D. ウイルス対策ソフトウェアをインストールします

正解:A、B、C、D

解説:
The countermeasures to deal with future malware incidents involve a multi-layered approach that includes:
Complying with the company's security policies: Ensuring that all security policies are followed can prevent malware incidents by maintaining a secure network environment.
Implementing strong authentication schemes: Strong authentication can prevent unauthorized access, reducing the risk of malware being introduced by attackers.
Implementing a strong password policy: Robust password policies can deter attackers by making it more difficult to gain access through brute force or other password-related attacks.
Install antivirus software: Antivirus software is essential for detecting, preventing, and removing malware from the network.
These measures align with the Certified Network Defender (CND) program's emphasis on a defense-in-depth strategy, which includes protecting endpoints, data, and networks, as well as continuous threat monitoring and response123.
Reference:
Certified Network Defender (CND) course material and study guide.
EC-Council's official Certified Network Defender (CND) resources123.


質問 # 121
侵入を検出するために IDS が試みるべきアクティビティの正しい順序は何ですか?

  • A. 侵入検知、対応、防止、侵入監視
  • B. 防止、侵入監視、侵入検出、対応
  • C. 侵入監視、侵入検出、対応、防止
  • D. 防止、侵入検知、対応、侵入監視

正解:C

解説:
An Intrusion Detection System (IDS) is designed to monitor network or system activities for malicious actions or policy violations. The correct order of activities that an IDS follows to detect an intrusion starts with Intrusion Monitoring, where it observes the network traffic or system events. Following this, Intrusion Detection takes place, where the IDS analyzes the monitored data to identify potential security breaches. Once a potential intrusion is detected, the Response mechanism is activated to address the intrusion, which may include alerts or automatic countermeasures. Finally, Prevention is applied to improve the system's defenses against future intrusions based on the detected patterns and responses.


質問 # 122
地元の銀行は、カード所有者のデータを保護したいと考えています。銀行は、カード所有者データのセキュリティを確保するために、________標準に準拠する必要があります。

  • A. SOAX
  • B. ISEC
  • C. PCI DSS
  • D. HIPAA

正解:C

解説:
The Payment Card Industry Data Security Standard (PCI DSS) is the global data security standard adopted by the payment card brands for all entities that process, store, or transmit cardholder data. It consists of steps that mirror security best practices, including protecting stored cardholder data, maintaining a vulnerability management program, and implementing strong access control measures. For a local bank that wants to protect cardholder data, compliance with PCI DSS is essential to ensure the security of this sensitive information.
References: The PCI DSS Quick Reference Guide and other official documents from the PCI Security Standards Council provide comprehensive information on the requirements and best practices for securing cardholder data. These documents are used as references in the EC-Council's Certified Network Defender (CND) course to educate network defenders on the importance of PCI DSS compliance12.


質問 # 123
ラップトップで有効になっている USB ポートは____ の例です。

  • A. ネットワーク攻撃対象領域
  • B. 物理的な攻撃面
  • C. ソフトウェア攻撃対象領域
  • D. システムの攻撃対象領域

正解:B

解説:
The term "attack surface" refers to the sum of all possible points where an unauthorized user can try to enter data to or extract data from an environment. The enabled USB ports on a laptop are considered a part of the physical attack surface because they allow for physical interaction with the device. This includes the potential for unauthorized devices to be connected, which could be used to compromise security, such as through the introduction of malware or the unauthorized copying of sensitive data.


質問 # 124
ネットワーク管理者は、組織内の物理的なセキュリティを強化したいと考えています。具体的には、人々が適切な資格情報なしに特定の制限ゾーンに入ることを阻止するソリューションを実装することです。
管理者は次の物理的なセキュリティ対策のうちどれを使用する必要がありますか?

  • A. ボラード
  • B. フェンス
  • C. ビデオ監視
  • D. マントラップ

正解:D

解説:
A mantrap is a physical security mechanism designed to control access to a secure area through a small space that can only fit one person. It typically consists of two sets of interlocking doors. The first set of doors must close before the second set opens, effectively trapping the individual temporarily. This allows security personnel to verify the person's credentials before granting them access to the restricted zone. Mantraps are particularly effective in sensitive areas where strict access control is required.


質問 # 125
DMZゾーンに関する正しい記述を特定します。

  • A. プロキシとして機能します
  • B. 信頼できるネットワークと信頼できないネットワークの間のニュートラルゾーンです
  • C. データベースサーバーなどの機密性の高い内部サーバーが含まれます
  • D. ファイル整合性監視メカニズムです

正解:B

解説:
A DMZ, or demilitarized zone, is a physical or logical subnetwork that contains and exposes an organization's external-facing services to an untrusted network, usually the internet. The purpose of a DMZ is to add an additional layer of security to an organization's local area network (LAN): an external attacker only has direct access to equipment in the DMZ, rather than any other part of the network. The term 'neutral zone' refers to the fact that the DMZ is separated from both the internal network and the untrusted network, which helps prevent attackers from directly accessing internal servers and data. It is not a file integrity monitoring mechanism, does not serve as a proxy, and typically does not include sensitive internal servers like database servers, which are kept inside the trusted network for security reasons123.
References:
* Fortinet's explanation of a DMZ network1.
* EC-Council's Certified Network Defender (CND) course outline2.
* An article on strengthening network security with DMZ3.


質問 # 126
Heatherは、リモートオフィスへのVPNトンネルの設定と実装を担当しています。彼女はおそらく、オフィスを接続するためにIPsecVPNトンネルを実装するでしょう。 OSIモデルのどの層でIPsecトンネルが機能しますか?

  • A. データリンク層で機能します
  • B. アプリケーションまたは物理層のいずれかで機能します。
  • C. セッション層で機能します。
  • D. ネットワーク層で動作します

正解:D

解説:
IPsec VPN tunnels operate at the network layer of the OSI model. This is because IPsec is designed to secure IP communications by authenticating and encrypting each IP packet of a communication session. IPsec includes protocols for establishing mutual authentication between agents at the beginning of a session and negotiation of cryptographic keys to be used during the session. IPsec can protect data flows between a pair of hosts (host-to-host), between a pair of security gateways (network-to-network), or between a security gateway and a host (network-to-host). By functioning at the network layer, IPsec VPNs are able to secure all traffic that passes through them, not just specific applications or sessions.


質問 # 127
管理者は、IDSを使用して、大量のトラフィックを監視および検査し、組織内からの不正な試みを検出したいと考えています。 IDSセンサーを展開する正確な場所を認識できません。 IDSセンサーを配置する場所を見つけるのを手伝ってくれませんか?

  • A. 場所3
  • B. 場所1
  • C. 場所4
  • D. 場所2

正解:D


質問 # 128
ネットワーク設計者は、クライアント向けに Web ポータルをインターネット上に公開したばかりの会社に提案書を提出する必要があります。このようなサーバーは内部ネットワークから分離し、DMZ 内に配置する必要があります。このニーズに直面して、設計者は、インターネット ネットワーク用、DMZ サーバー ファーム用、内部ネットワーク用の 3 つのインターフェイスを持つファイアウォールの提案を提示します。設計者はどのようなトポロジーを提案するのでしょうか?

  • A. 要塞ホスト
  • B. マルチホーム ファイアウォール
  • C. スクリーンされたサブネット
  • D. DMZ、外部-内部ファイアウォール

正解:C

解説:
The topology that the network designer will propose is known as a screened subnet. This topology involves the use of two or more firewalls to create a network segment referred to as a demilitarized zone (DMZ). The DMZ acts as a buffer zone between the public internet and the internal network. It contains the public-facing servers, such as the web portal mentioned, which is isolated from the internal network for added security. The screened subnet topology typically includes a firewall at the network's edge connected to the internet, another firewall separating the DMZ from the internal network, and the DMZ itself. This setup allows for strict control of traffic between the internet, the DMZ, and the internal network, providing an additional layer of security.


質問 # 129
攻撃対象領域を分析するには、正しい手順の順序を選択してください。

  • A. 露出の指標を特定する->攻撃をシミュレートする->攻撃対象領域を視覚化する->攻撃対象領域を減らす
  • B. 攻撃対象領域を視覚化する->露出の指標を特定する->攻撃をシミュレートする->攻撃対象領域を減らす
  • C. 露出の指標を特定する->攻撃対象領域を視覚化する->攻撃をシミュレートする->攻撃対象領域を減らす
  • D. 攻撃対象領域を視覚化する->攻撃をシミュレートする->露出の指標を特定する->攻撃対象領域を減らす

正解:C

解説:
The correct order of steps to analyze the attack surface begins with identifying the indicators of exposure. This step involves recognizing the elements within the system that could potentially be exploited by threats. Following this, the attack surface is visualized to understand the scope and scale of potential attack vectors. Next, a simulation of the attack is conducted to assess the effectiveness of the current security measures and identify any vulnerabilities. Finally, the attack surface is reduced by implementing measures to mitigate the identified risks and vulnerabilities, thereby enhancing the overall security posture.


質問 # 130
Katieは、データをブロックに分割し、データを複数のハードドライブに均等に書き込むRAIDレベルを実装しましたが、データの冗長性は提供していません。このタイプのRAIDレベルをセットアップするには、最低でも________が必要です。

  • A. 3台のドライブ
  • B. 6台のドライブ
  • C. 4台のドライブ
  • D. 2台のドライブ

正解:D

解説:
The RAID level that splits data into blocks and evenly writes the data to multiple hard drives without providing data redundancy is known as RAID 0. This RAID level is also referred to as striping. It requires a minimum of two drives to set up. RAID 0 enhances performance by allowing simultaneous read and write operations across the drives, but it does not offer any fault tolerance. If one drive fails, all data in the array is lost because there is no redundancy.
References: RAID 0 is defined by its ability to increase performance by striping data across at least two drives. This information is consistent with the standards and descriptions provided in the EC-Council's Certified Network Defender (C|ND) course materials and other authoritative sources on RAID configurations123.


質問 # 131
ユーザーが他のユーザーに代わって要求されたリソースにアクセスできるようにするのはどの承認ですか?

  • A. 暗黙的な承認
  • B. 明示的な認可
  • C. 分散型認可
  • D. 集中認証

正解:A

解説:
Implicit Authorization is a type of authorization that allows users to access resources on behalf of others without the need for explicit permission from the resource owner each time. This is commonly implemented through OAuth, where a user grants a third-party application access to their information on another service without sharing their credentials. The application receives an access token that permits it to act on behalf of the user, accessing only what the user is authorized to access.
References: The OAuth framework is a prime example of Implicit Authorization, as it enables applications to obtain access tokens for authorization to protected resources, acting on the user's behalf123.


質問 # 132
......

最新の312-38日本語合格保証される試験問題集認証サンプル問題:https://www.jpntest.com/shiken/312-38_JPN-mondaishu

弊社を連絡する

我々は12時間以内ですべてのお問い合わせを答えます。

オンラインサポート時間:( UTC+9 ) 9:00-24:00
月曜日から土曜日まで

サポート:現在連絡