無料ISC CISSP試験問題と解答トレーニングを提供しています [Q268-Q283]

Share

無料ISC CISSP試験問題と解答トレーニングを提供しています

トップクラスISC CISSPオンライン問題集

質問 # 268
Which part of an operating system (OS) is responsible for providing security interfaces among the hardware, OS, and other parts of the computing system?

  • A. Time separation
  • B. Trusted Computing Base (TCB)
  • C. Reference monitor
  • D. Security kernel

正解:D


質問 # 269
How many bits is the effective length of the key of the Data Encryption Standard algorithm?

  • A. 0
  • B. 1
  • C. 2
  • D. 3

正解:C

解説:
Explanation/Reference:
Explanation:
Data Encryption Standard (DES) has had a long and rich history within the computer community. NIST invited vendors to submit data encryption algorithms to be used as a cryptographic standard. IBM had already been developing encryption algorithms to protect financial transactions. In 1974, IBM's 128-bit algorithm, named Lucifer, was submitted and accepted. The NSA modified this algorithm to use a key size of 64 bits (with 8 bits used for parity, resulting in an effective key length of 56 bits) instead of the original
128 bits, and named it the Data Encryption Algorithm (DEA).
NOTE DEA is the algorithm that fulfills DES, which is really just a standard. So DES is the standard and DEA is the algorithm, but in the industry we usually just refer to it as DES. The CISSP exam may refer to the algorithm by either name, so remember both.
Incorrect Answers:
A: The Data Encryption Standard algorithm has an effective key length of 56 bits, not 168 bits.
B: The Data Encryption Standard algorithm has an effective key length of 56 bits, not 128 bits.
D: The Data Encryption Standard algorithm has an effective key length of 56 bits, not 64 bits.
References:
Harris, Shon, All In One CISSP Exam Guide, 6th Edition, McGraw-Hill, 2013, p. 800


質問 # 270
When determining data and information asset handling, regardless of the specific toolset being used, which of the following is one of the common components of big data?

  • A. Centralized processing location
  • B. Distributed storage locations
  • C. Consolidated data collection
  • D. Distributed data collection

正解:D


質問 # 271
Which of the following is the PRIMARY purpose of installing a mantrap within a facility?

  • A. Prevent plggybacking
  • B. Prevent rapid movement
  • C. Control air flow
  • D. Control traffic

正解:A


質問 # 272
copyright provides protection for which of the following?

  • A. Ideas expressed n literary works
  • B. New and non-obvious invention
  • C. Discoveries of natural phenomena
  • D. A particular expression of an idea

正解:D

解説:
Copyright provides protection for a particular expression of an idea, not the idea itself. Copyright is a type of intellectual property right that grants the creator or the owner of an original work the exclusive right to reproduce, distribute, perform, display, or license the work, and to create derivative works based on the work.
Copyright protects the form or the manner in which the idea is expressed, such as a book, a song, a painting, or a software code. Copyright does not protect the idea, the concept, the principle, or the discovery behind the work, as they are considered to be in the public domain and can be used by anyone. Discoveries of natural phenomena, new and non-obvious inventions, and ideas expressed in literary works are not protected by copyright, but by other types of intellectual property rights, such as patents, trademarks, or trade secrets.
References:
* [Copyright]
* [What Does Copyright Protect?]
* [Intellectual Property Rights]


質問 # 273
A security engineer is assigned to work with the patch and vulnerability management group. The deployment of a new patch has been approved and needs to be applied.
The research is complete, and the security engineer has provided recommendations. Where should the patch be applied FIRST?

  • A. Server environment
  • B. Production environment
  • C. Desktop environment
  • D. Lower environment

正解:D


質問 # 274
The standard process to certify and accredit

  • A. Defense audit
  • B. CIAP
  • C. DITSCAP
  • D. DIACAP
  • E. NIACAP

正解:E

解説:
The NIACAP provides a standard set of activities, general tasks, and a management structure to certify and accredit systems that will maintain the information assurance and security posture of a system or site. The NIACAP is designed to certify that the information system meets documented accreditation requirements and will continue to maintain the accredited security posture throughout the system life cycle.
*Answer CIAP is being developed for the evaluation of critical commercial systems and uses the NIACAP methodology.
*DITSCAP establishes for the defense entities a standard process, set of activities, general task descriptions, and a management structure to
certify and accredit IT systems that will maintain the required security posture. The process is designed to certify that the IT system meets the accreditation requirements and that the system will maintain the accredited security posture throughout the system life cycle. The four phases to the DITSCAP are Definition, Verification, Validation, and Post Accreditation.
*Answer "Defense audit" is a distracter.
*Answer DIACAP is a distracter.


質問 # 275
What are the basic questions that must be asked at the beginning of any investigation?(Choose all that apply)

  • A. What
  • B. When
  • C. How
  • D. Who
  • E. Budget
  • F. Time frame
  • G. Where
  • H. Cost

正解:A、B、C、D、G

解説:
At the beginning of any investigation, an investigator must ask who, what, when,
where, and how. Answering the questions will lead to the successful conclusion of the case.


質問 # 276
The hashing algorithm in the Digital Signature Standard (DSS) generates
a message digest of:

  • A. 56 bits
  • B. 130 bit
  • C. 160 bits
  • D. 120 bits

正解:C


質問 # 277
Which of the following media is least problematic with data remanence?

  • A. Electrically Erasable Programming read-only Memory (EEPROM)
  • B. Magnetic disk
  • C. Dynamic Random Access Memory (DRAM)
  • D. Flash memory

正解:C

解説:
Data remanence is the residual representation of data that remains on a storage media after it has been erased or overwritten. Data remanence can pose a security risk if the storage media is disposed of, reused, or transferred without proper sanitization, as the residual data may be recovered by unauthorized parties using forensic tools or techniques. Different types of storage media have different levels of susceptibility to data remanence, depending on their physical characteristics, design, and technology. Among the four options, the media that is least problematic with data remanence is Dynamic Random Access Memory (DRAM). DRAM is a type of volatile memory that stores data using capacitors and transistors. DRAM requires constant power to maintain the data, and it loses the data when the power is turned off. Therefore, DRAM has a very low level of data remanence, as the data is quickly erased or decayed when the power supply is removed. Therefore, the correct answer is C. The other options are incorrect because they are types of non-volatile memory that retain data even when the power is turned off, and they have higher levels of data remanence than DRAM. Magnetic disk is a type of magnetic storage media that stores data using magnetized regions on a rotating platter.
Magnetic disk has a moderate level of data remanence, as the data can be partially recovered after one or more overwrites, using magnetic force microscopy or other techniques. Electrically Erasable Programmable Read-Only Memory (EEPROM) is a type of flash memory that stores data using floating-gate transistors.
EEPROM has a high level of data remanence, as the data can persist for years after erasure, and can be recovered using invasive or non-invasive methods, such as microprobing or power analysis. Flash memory is a type of solid-state memory that stores data using electrically programmable cells. Flash memory has a high level of data remanence, as the data can remain for a long time after erasure, and can be recovered using physical or logical methods, such as chip-off analysis or wear-leveling bypass. References: Official (ISC)2 CISSP CBK Reference, Fifth Edition, Chapter 8: Security Operations, Section: Secure Provisioning of Resources, Subsection: Media Management; CISSP All-in-One Exam Guide, Eighth Edition, Chapter 8:
Security Operations, Section: Media Management.


質問 # 278
Which of the following open source software issues pose the MOST risk to an application?

  • A. The software is not used or popular in the development community.
  • B. The software is beyond end of life and the vendor is out of business.
  • C. The software has multiple Common Vulnerabilities and Exposures (CVE) but the CVEs are classified as low risks.
  • D. The software has multiple Common Vulnerabilities and Exposures (CVE) and only some are remediated.

正解:D


質問 # 279
Who should direct short-term recovery actions immediately following a disaster?

  • A. Chief Executive Officer
  • B. Disaster Recovery Manager
  • C. Chief Information Officer
  • D. Chief Operating Officer

正解:B


質問 # 280
Passwords can be required to change monthly, quarterly, or at other intervals:

  • A. depending on the criticality of the information needing protection and the password's frequency of use.
  • B. depending on the password's frequency of use.
  • C. depending on the criticality of the information needing protection
  • D. not depending on the criticality of the information needing protection but depending on the password's frequency of use.

正解:A

解説:
Passwords can be compromised and must be protected. In the ideal case, a password should only be used once. The changing of passwords can also fall between these two extremes. Passwords can be required to change monthly, quarterly, or at other intervals, depending on the criticality of the information needing protection and the password's frequency of use. Obviously, the more times a password is used, the more chance there is of it being compromised.
Source: KRUTZ, Ronald L. & VINES, Russel D., The CISSP Prep Guide: Mastering the
Ten Domains of Computer Security, 2001, John Wiley & Sons, Page 36 & 37


質問 # 281
Which one of the following can be used to detect an anomaly in a system by keeping track of the state of files that do not normally change?\

  • A. Firewall logs
  • B. System logs
  • C. Anti-spyware
  • D. Integrity checker

正解:D

解説:
The tool that can be used to detect an anomaly in a system by keeping track of the state of files that do not normally change is an integrity checker. An anomaly is a deviation or abnormality from the normal or expected behavior or state of a system, network, or resource, that may indicate a potential security problem or issue, such as a malware infection, a configuration error, or a data corruption. An anomaly can be detected or identified by using various methods or techniques, such as statistical analysis, behavioral analysis, or signature analysis, that can compare or contrast the actual or current behavior or state of the system, network, or resource, with the expected or baseline behavior or state of the system, network, or resource. An integrity checker is a tool that can be used to detect an anomaly in a system by keeping track of the state of files that do not normally change. An integrity checker is a tool that can monitor, verify, and maintain the integrity or consistency of the files or data on a system, by using various methods or techniques, such as checksums, hashes, or digital signatures, that can generate or validate the unique or distinctive values or identifiers of the files or data. An integrity checker can help to detect an anomaly in a system by keeping track of the state of files that do not normally change, by comparing or contrasting the current or actual values or identifiers of the files or data, with the previous or expected values or identifiers of the files or data, and by alerting or reporting any changes or modifications that may occur on the files or data, that may indicate an anomaly or a security problem or issue. System logs, anti-spyware, or firewall logs are not the tools that can be used to detect an anomaly in a system by keeping track of the state of files that do not normally change, as they are either more related to the recording, prevention, or filtering of the system activities, events, or transactions, rather than the monitoring, verification, or maintenance of the system files or data. References: CISSP All-in-One Exam Guide, Eighth Edition, Chapter 7: Security Operations, page 461; CISSP Official (ISC)2 Practice Tests, Third Edition, Domain 7: Security Operations, Question 7.11, page 274.


質問 # 282
This OSI layer has a service that negotiates transfer syntax and translates data to and from the transfer syntax for users, which may represent data using different syntaxes. At which of the following layers would you find such service?

  • A. Application
  • B. Presentation
  • C. Transport
  • D. Session

正解:B

解説:
It is responsible for taking information from the "Application layer protocols" and putting it in a form suitable for the application to process.
The presentation-layer implementation of the OSI protocol suite consists of a presentation protocol and a presentation service. The presentation protocol allows presentation-service users (PSusers) to communicate with the presentation service.
A PS-user is an entity that requests the services of the presentation layer. Such requests are
made at Presentation-Service Access Points (PSAPs). PS-users are uniquely identified by using
PSAP addresses.
Presentation service negotiates transfer syntax and translates data to and from the transfer syntax
for PS-users, which represent data using different syntaxes. The presentation service is used by
two PS-users to agree upon the transfer syntax that will be used. When a transfer syntax is agreed
upon, presentation-service entities must translate the data from the PS-user to the correct transfer
syntax.
The OSI presentation-layer service is defined in the ISO 8822 standard and in the ITU-T X.216
recommendation. The OSI presentation protocol is defined in the ISO 8823 standard and in the
ITU-T X.226 recommendation. A connectionless version of the presentation protocol is specified in
the ISO 9576 standard.
To remember the OSI layers you can use the following Mnemonics:
The first one is from the bottom (Physical Layer - Layer 1) up (Application - Layer 7):
Please Do Not Throw Sausage Pizza Away
There is another mnemonic from the top down:
All People Seem To Need Data Processing
Both maps to:
1. Physical - 2. Data link - 3. Network - 4. Transport - 5. Session - 6. Presentation - 7. Application
The following answers are incorrect: Transport: Responsible for providing end to end data transport services and establish the logical connection between COMPUTERS for example TCP and UDP
Session: Responsible for maintaing the connection between two APPLICATIONS during the data transfer for example NFS , RPC protocol Application : Works closest to the application , it does not itself contain applications but rather the protocols that support the applications. for example HTTP work at this layer but the application it support is IE , Mozilla , opera , chrome ...
The following reference(s) were/was used to create this question: http://www.cisco.com/cpress/cc/td/cpress/fund/ith2nd/it2432.htm and http://en.wikipedia.org/wiki/List_of_network_protocols_%28OSI_model%29


質問 # 283
......

最新(2025)ISC CISSP試験問題集:https://www.goshiken.com/ISC/CISSP-mondaishu.html

CISSP練習問題集で検証済みのGoShiken更新された1795問題あります:https://drive.google.com/open?id=1e6IFGm_wUA-AKoYjzXMcY83d_SfFjKlV