156-110無料問題集「CheckPoint Check Point Certified Security Principles Associate (CCSPA)」

質問 1

Why should each system user and administrator have individual accounts? (Choose TWO.)

（A）Using generic user names and passwords increases system security and reliability.

（B）If users do not have individual login names, processes can automatically run with root/administrator access.

（C）By using individual login names and passwords, user actions can be traced.

（D）A generic user name and password for users and security administrators provides anonymity, which prevents useful logging and auditing.

（E）Using separate accounts for each user reduces resource consumption, particularly disk space.

正解：C、D 解答を投票する

質問 2

Which of the following is likely in a small-business environment?

（A）Most small businesses employ a full-time information-technology staff.

（B）Security budgets are very small.

（C）Resources are available as needed.

（D）Most employees have experience with information security.

（E）Small businesses have security personnel on staff.

正解：B 解答を投票する

質問 3

Which of the following best describes an external intrusion attempt on a local-area network
(LAN)?

（A）Internal users try to gain unauthorized access to information assets outside the organizational perimeter.

（B）Internal users perform inappropriate acts on assets to which they have been given rights or permissions.

（C）External users attempt to access public resources.

（D）External intruders attempt exploitation of vulnerabilities, to remove their own access.

（E）External-intrusion attempts from sources outside the LAN are not granted permissions or rights to an organization's information assets.

正解：E 解答を投票する

質問 4

Embedding symbols in images or common items, such as pictures or quilts, is an example of __________.

（A）Transposition cipher

（B）Espionage

（C）Arithmancy

（D）Key exchange

（E）Steganography

正解：E 解答を投票する

質問 5

Which type of access management uses information about job duties and positions, to indicate subjects' clearance levels?

（A）Mandatory

（B）Discretionary

（C）Hybrid

（D）Nondiscretionary

（E）Role-based

正解：E 解答を投票する

質問 6

If a firewall receives traffic not explicitly permitted by its security policy, what should the firewall do?

（A）Nothing

（B）Do not log and pass the traffic.

（C）Do not log and drop the traffic.

（D）Log and pass the traffic.

（E）Log and drop the traffic.

正解：E 解答を投票する

質問 7

Which of the following is NOT a Business Continuity Plan (BCP) recovery strategy?

（A）Deferring action; action waiting until a later date

（B）Manual procedures; alternative solution to technology available

（C）Delegating risk to another entity, such as an insurer

（D）Reciprocal agreements with another organization

（E）Doing nothing; no action taken to recover the technology

正解：C 解答を投票する

質問 8

You are preparing a machine that will be used as a dedicated Web server. Which of the following services should NOT be removed?

（A）HTTP

（B）FTP

（C）PVP

（D）SMTP

（E）IRC

正解：A 解答を投票する

質問 9

Which of the following is NOT a concern for enterprise physical security?

（A）Unauthorized access to a facility

（B）Social engineering

（C）Property theft

（D）Network Intrusion Detection Systems

（E）Dumpster diving

正解：D 解答を投票する

質問 10

ABC Corporation's network is configured such that a user must log in individually at each server and access control. Which type of authentication is in use?

（A）Three-factor authentication

（B）Mandatory sign-on

（C）Hybrid access control

（D）Role-based access control

（E）Single sign-on

正解：B 解答を投票する

156-110 無料問題集「CheckPoint Check Point Certified Security Principles Associate (CCSPA)」

弊社を連絡する

関連リンク

トップ試験