CISSP Certification: Mastering Data Encryption and Security Protocols Quiz

1. Which symmetric cipher is a Feistel-type block cipher with 64-128 bit blocks?

NOT D. Twofish

B. SAFER

C. Blowfish

D. Twofish

The correct answer is A. CAST, which is a Feistel-type block cipher with block sizes of 64-128 bits.

Explanation

The correct answer is A. CAST, which is a Feistel-type block cipher with block sizes of 64-128 bits.

2. Which of the following disaster recovery testing plans is the most cost-effective and efficient way to identify areas of overlap in the plan before conducting more demanding training exercises?

D. Table top exercise

A. Evacuation drill

C. Structured walk-through test

B. Walk-through drill

A structured walk-through test involves a comprehensive review of the disaster recovery plan, allowing for identification of areas of overlap and potential gaps in the plan. It is a cost-effective and efficient way to ensure readiness for more demanding training exercises.

Explanation

A structured walk-through test involves a comprehensive review of the disaster recovery plan, allowing for identification of areas of overlap and potential gaps in the plan. It is a cost-effective and efficient way to ensure readiness for more demanding training exercises.

3. Reduction analysis:

A. Reduces the system's risk to a given target level by effectively applying countermeasures

NOT B. Reduces the system's threats to a given target level by analyzing those threats

C. Is a planned activity for identifying and assessing threats and vulnerabilities

D. Identifies and reduces exploitable vulnerabilities

Reduction analysis involves reducing the system's risk to a target level through countermeasures and vulnerability identification, rather than just analyzing threats.

Explanation

Reduction analysis involves reducing the system's risk to a target level through countermeasures and vulnerability identification, rather than just analyzing threats.

4. Which of the following is true for Interface testing?

B. Promotes user feedback

A. Offers flexible usage and input combos

C. Has decreased reliability

D. Is effective in large environment simulations

Interface testing focuses on testing the interfaces between components of a system. It is particularly useful in large environment simulations to ensure that the interactions between different components work effectively together. The other options do not accurately describe the purpose or characteristics of interface testing.

Explanation

Interface testing focuses on testing the interfaces between components of a system. It is particularly useful in large environment simulations to ensure that the interactions between different components work effectively together. The other options do not accurately describe the purpose or characteristics of interface testing.

5. Which of the following electronically stored information (ESI) are not considered reasonably accessible?

C. Hard drives

A. Manual-access disks

B. Backup tapes for disaster recovery

D. Auto-access optical disks

Backup tapes for disaster recovery are typically considered not reasonably accessible due to the time and effort required to retrieve specific data from them in comparison to other options such as hard drives or auto-access optical disks.

Explanation

Backup tapes for disaster recovery are typically considered not reasonably accessible due to the time and effort required to retrieve specific data from them in comparison to other options such as hard drives or auto-access optical disks.

6. Which type of law is derived from court decisions and codification of British law dating back to the 12th century?

NOT C. Tort Law

C. Tort Law

D. Administrative Law

B. Criminal Law

Common Law is the correct answer because it is based on precedents and judicial decisions. Criminal Law deals with crimes and punishment, Tort Law deals with civil wrongs, and Administrative Law deals with regulations set by administrative agencies.

Explanation

Common Law is the correct answer because it is based on precedents and judicial decisions. Criminal Law deals with crimes and punishment, Tort Law deals with civil wrongs, and Administrative Law deals with regulations set by administrative agencies.

7. Which symmetric cipher is used in Bluetooth?

A. SAFER

C. RC5

D. Twofish

B. Blowfish

Bluetooth uses SAFER as its symmetric cipher due to its light weight and efficient encryption capabilities.

Explanation

Bluetooth uses SAFER as its symmetric cipher due to its light weight and efficient encryption capabilities.

8. What is a minimum security baseline?

A. That are applied enterprise wide to ensure a consistent level of compliance.

C. That are based on regulatory requirements

D. That are not based on a systematic review of risks

B. That are applied to a minimum set of controls to ensure a minimum level of compliance

A minimum security baseline is a set of standards that are applied across an entire enterprise to ensure a consistent level of compliance. This helps maintain a uniform level of security measures throughout the organization.

Explanation

A minimum security baseline is a set of standards that are applied across an entire enterprise to ensure a consistent level of compliance. This helps maintain a uniform level of security measures throughout the organization.

9. In public key cryptography, confidential messages with proof of origin are encrypted with the sender's private key and the public key of the recipient. A. TRUE B. FALSE.

B. FALSE

C. Sometimes true depending on the encryption algorithm used

A. TRUE

D. TRUE for electronic messages but FALSE for handwritten letters

In public key cryptography, the sender signs a message with their private key, which can then be verified by anyone using the sender's public key. Additionally, the message can be encrypted with the recipient's public key to ensure confidentiality.

Explanation

In public key cryptography, the sender signs a message with their private key, which can then be verified by anyone using the sender's public key. Additionally, the message can be encrypted with the recipient's public key to ensure confidentiality.

10. Information will not be disclosed to any unauthorized person on a local network via which of the following cryptographic system services?

A. Authentication

B. Non-Repudiation

C. Integrity

D. Confidentiality

The correct cryptographic system service to prevent unauthorized disclosure of information on a local network is Confidentiality, which ensures that the data is encrypted and only authorized parties can access the plaintext. Authentication is used to verify the identity of users, Non-Repudiation ensures that a sender cannot deny sending a message, and Integrity ensures that data remains accurate and consistent throughout its lifecycle.

Explanation

The correct cryptographic system service to prevent unauthorized disclosure of information on a local network is Confidentiality, which ensures that the data is encrypted and only authorized parties can access the plaintext. Authentication is used to verify the identity of users, Non-Repudiation ensures that a sender cannot deny sending a message, and Integrity ensures that data remains accurate and consistent throughout its lifecycle.

11. Many organizations purchase insurance policies to provide various liability coverage for information security risks, including any physical damage of assets, hacking attacks, etc. Which of the following risk management techniques are being employed?

B. Risk transfer

A. Risk avoidance

C. Risk acceptance

D. Risk insurance

12. Defining technology security architecture in relationship with other technology domains is a benefit of the enterprise security architecture.

C. PARTIALLY TRUE

A. TRUE

D. NOT RELATED

B. FALSE

Enterprise security architecture involves defining technology security architecture in relation to other technology domains to ensure comprehensive security measures.

Explanation

Enterprise security architecture involves defining technology security architecture in relation to other technology domains to ensure comprehensive security measures.

13. What are weaknesses of TELNET? (SELECT ALL THAT APPLY)

NOT B.Limited to UserID/password authenticationD.Usernames/passwords can be brute forced

E. Vulnerable to man-in-the-middle attacks

C. No encryption

A. Emergency services location problem

TELNET is a protocol that dates back to a time when security was not a primary concern. It lacks encryption, making it vulnerable to eavesdropping and man-in-the-middle attacks. Additionally, TELNET's authentication process is limited to UserID/password which can be brute forced, posing a significant security risk.

Explanation

TELNET is a protocol that dates back to a time when security was not a primary concern. It lacks encryption, making it vulnerable to eavesdropping and man-in-the-middle attacks. Additionally, TELNET's authentication process is limited to UserID/password which can be brute forced, posing a significant security risk.

14. What is the best encryption method for a personal e-commerce site that does not require each customer to have an individual key?

D. PGP

A. Asymmetric Encryption

B. Symmetric Encryption

C. S/MIME

Symmetric encryption is the best solution as it uses the same key to encrypt and decrypt data, making it simpler to manage compared to asymmetric encryption, S/MIME, or PGP which require separate keys for encryption and decryption.

Explanation

Symmetric encryption is the best solution as it uses the same key to encrypt and decrypt data, making it simpler to manage compared to asymmetric encryption, S/MIME, or PGP which require separate keys for encryption and decryption.

15. Which of the following is the technology of indoor environmental comfort?

C. Lighting

A. HVAC

B. CCTV

D. Fire Suppression

HVAC stands for Heating, Ventilation, and Air Conditioning. It is the technology related to indoor environmental comfort by providing heating and cooling, as well as maintaining air quality and temperature.

Explanation

HVAC stands for Heating, Ventilation, and Air Conditioning. It is the technology related to indoor environmental comfort by providing heating and cooling, as well as maintaining air quality and temperature.

16. What does Remote Access provide?

B. Allows users to control remote-controlled cars.

D. Enables users to communicate with animals remotely.

A. Provides administrators and end users with the ability to access resources from a distant location

C. Enhances the taste of food through technology.

Remote Access allows individuals to access resources or systems from a location that is not physically present. This technology is commonly used by administrators and end users to remotely manage or utilize resources.

Explanation

Remote Access allows individuals to access resources or systems from a location that is not physically present. This technology is commonly used by administrators and end users to remotely manage or utilize resources.

17. Which one of the following tests the system's hardware, software, and configuration in an environment like its eventual operational setting?

NOT D. None of the aboveB. Accreditation

A. Certification

D. None of the above

C. Recertification

Accreditation tests the system's hardware, software, and configuration in an environment like its eventual operational setting, ensuring it meets certain standards and requirements.

Explanation

Accreditation tests the system's hardware, software, and configuration in an environment like its eventual operational setting, ensuring it meets certain standards and requirements.

18. Which intrusion detection system's efficiency decreases with encryption?

D. PIDS

C. SIDS

B. HIDS

A. NIDS

Intrusion Detection Systems (IDS) can be categorized as Network-based (NIDS) or Host-based (HIDS). NIDS monitors network traffic, while HIDS monitors activity on individual devices. Encryption can make it difficult for NIDS to inspect network traffic, hence its efficiency decreases with encryption.

Explanation

Intrusion Detection Systems (IDS) can be categorized as Network-based (NIDS) or Host-based (HIDS). NIDS monitors network traffic, while HIDS monitors activity on individual devices. Encryption can make it difficult for NIDS to inspect network traffic, hence its efficiency decreases with encryption.

19. Which agile development model uses timeboxing as a key element?

C. Scrum

D. Feature Driven Development (FDD)

B. eXtreme Programming

A. The Dynamic Systems Development Model (DSDM)

Timeboxing is a technique where a fixed period of time is allocated to complete a specific task or set of tasks. The Dynamic Systems Development Model (DSDM) is an agile development model that uses timeboxing as a key element to ensure timely delivery of the project. While other agile methodologies like eXtreme Programming, Scrum, and Feature Driven Development (FDD) have their own unique practices and approaches, they do not specifically emphasize timeboxing as prominently as DSDM does.

Explanation

Timeboxing is a technique where a fixed period of time is allocated to complete a specific task or set of tasks. The Dynamic Systems Development Model (DSDM) is an agile development model that uses timeboxing as a key element to ensure timely delivery of the project. While other agile methodologies like eXtreme Programming, Scrum, and Feature Driven Development (FDD) have their own unique practices and approaches, they do not specifically emphasize timeboxing as prominently as DSDM does.

20. Which of the following is NOT a consideration when choosing data retention policies?

A. Cost of data retention

C. Human resources

D. Inherent aggregation

B. Data retrieval and use

When choosing data retention policies, considerations typically revolve around cost, data retrieval and use, and inherent aggregation. Human resources, while indirectly involved in the implementation of data retention policies, are not a primary consideration in the decision-making process.

Explanation

When choosing data retention policies, considerations typically revolve around cost, data retrieval and use, and inherent aggregation. Human resources, while indirectly involved in the implementation of data retention policies, are not a primary consideration in the decision-making process.

21. Which of the following terms refers to a mechanism which proves that the sender really sent a specific message?

C. Authentication

A. Integrity

B. Confidentiality

D. Non-repudiation

Non-repudiation is the term used to refer to the mechanism that ensures the sender cannot deny sending a message. Integrity, Confidentiality, and Authentication are important concepts in cybersecurity, but they do not specifically address the issue of proving the sender's identity in message transmission.

Explanation

Non-repudiation is the term used to refer to the mechanism that ensures the sender cannot deny sending a message. Integrity, Confidentiality, and Authentication are important concepts in cybersecurity, but they do not specifically address the issue of proving the sender's identity in message transmission.

22. As an operational system engineer you are responsible for verifying that a software build meets its data requirements and correctly generates projected displays and reports. Which type of testing is best used to achieve your goals?

A. Functional

D. Performance

B. Reliability

C. Regression

Functional testing is focused on ensuring that the software functions as expected and meets the specified requirements, making it the best choice for verifying data requirements and displays/reports generation.

Explanation

Functional testing is focused on ensuring that the software functions as expected and meets the specified requirements, making it the best choice for verifying data requirements and displays/reports generation.

23. Which phase of the incident response process is triggered by awareness?

C. Recovery Phase

B. Investigative Phase

D. Post-incident Phase

A. Triage Phase

The Triage Phase is triggered by awareness in the incident response process as it involves quickly assessing the situation to determine the severity of the incident and prioritize response actions.

Explanation

The Triage Phase is triggered by awareness in the incident response process as it involves quickly assessing the situation to determine the severity of the incident and prioritize response actions.

24. Polyalphabetic encryption techniques use multiple alphabets for each successive character replacement, making analysis much more difficult.

FALSE

A. TRUE

UNCERTAIN

DEPENDS

25. Substitution is mixing the location of plaintext throughout the ciphertext adding a level of complexity to the process.

A. TRUE

D. Substitution has no impact on the encryption process

C. Not enough information provided to answer

B. FALSE

Substitution in encryption refers to replacing the plaintext with ciphertext according to a specific system, rather than mixing their locations.

Explanation

Substitution in encryption refers to replacing the plaintext with ciphertext according to a specific system, rather than mixing their locations.

26. A basic control component of an industrial control system (ICS) that is most often used is called a:

D. Master terminal unit

B. Programmable logic controller

A. Process control system

C. Remote terminal unit

In an industrial control system, a Programmable Logic Controller (PLC) is a commonly used control component for automation and control of machinery and processes. While process control systems, remote terminal units, and master terminal units are also used in various industrial applications, they do not specifically refer to the basic control component as requested in the question.

Explanation

In an industrial control system, a Programmable Logic Controller (PLC) is a commonly used control component for automation and control of machinery and processes. While process control systems, remote terminal units, and master terminal units are also used in various industrial applications, they do not specifically refer to the basic control component as requested in the question.

27. The Investigative phase of the incident response process includes detection, identification, and notification. A. TRUEB. FALSE.

C. TRUE

B. FALSE

D. TRUE

A. TRUE

The investigative phase of the incident response process includes detection and analysis of the incident, but not notification. Notification typically occurs in the Containment phase once the incident has been fully understood and contained.

Explanation

The investigative phase of the incident response process includes detection and analysis of the incident, but not notification. Notification typically occurs in the Containment phase once the incident has been fully understood and contained.

28. What type of risk remains after the implementation of new or enhanced controls?

D. Obsolete

A. Substantial

B. Residual

C. Inherent

Residual risk is the risk that still remains after the implementation of controls. It is important to identify and assess residual risk to ensure that the organization's overall risk exposure is effectively managed.

Explanation

Residual risk is the risk that still remains after the implementation of controls. It is important to identify and assess residual risk to ensure that the organization's overall risk exposure is effectively managed.