[2025年02月]更新の100-160問題集で時間限定!無料アクセスせよ! [Q80-Q99]

Share

[2025年02月]更新の100-160問題集で時間限定!無料アクセスせよ!

100-160問題集で2025年最新のCisco 100-160試験問題

質問 # 80
Which of the following best describes the concept of defense in depth in cybersecurity?

  • A. Implementing access controls to ensure availability of critical resources
  • B. Running regular vulnerability scans to maintain the integrity of the system
  • C. Encrypting sensitive data to maintain confidentiality
  • D. Utilizing multiple layers of security controls to protect against different types of threats

正解:D

解説:
Defense in depth is a cybersecurity strategy that involves implementing multiple layers of security controls to protect against various types of threats. This approach provides greater resilience and mitigates potential vulnerabilities. By implementing multiple layers, even if one control fails, others can still safeguard the system.


質問 # 81
What does NAT stand for in networking?

  • A. Network Address Terminal
  • B. Network Address Transmission
  • C. Network Address Translation
  • D. Network Access Technology

正解:C

解説:
NAT stands for Network Address Translation. It is a process used in networking to translate private IP addresses into public IP addresses, enabling devices with private addresses to communicate with devices on public networks like the internet.


質問 # 82
What is the purpose of implementing a firewall in a network?

  • A. To prevent unauthorized physical access to network devices
  • B. To scan and remove malware from network traffic
  • C. To monitor network performance and troubleshoot issues
  • D. To control and filter network traffic based on predetermined security policies

正解:D

解説:
A firewall is a network security device that acts as a barrier between internal and external networks. Its main purpose is to control and filter network traffic based on predetermined security policies. It examines packets entering or leaving the network and either allows or blocks them based on the configured rules.


質問 # 83
Which security feature provides network segmentation by creating virtual networks?

  • A. Virtual Private Network (VPN)
  • B. VLANs
  • C. VLANs
  • D. Intrusion Prevention System (IPS)

正解:B

解説:
Option 1: Correct, VLANs (Virtual Local Area Networks) provide network segmentation by creating virtual networks, allowing different groups of devices to be logically separated on the same physical network.
Option 2: Incorrect, Firewalls are designed to monitor and filter network traffic based on predetermined security rules, but they do not provide network segmentation by creating virtual networks.
Option 3: Incorrect, An Intrusion Prevention System (IPS) is a security appliance or software that monitors network traffic for suspicious activity and takes action to prevent potential threats, but it does not provide network segmentation by creating virtual networks.
Option 4: Incorrect, A Virtual Private Network (VPN) is a secure tunnel between two or more devices, typically used to connect remote sites or allow remote users to access the private network. It does not provide network segmentation by creating virtual networks.


質問 # 84
What is the purpose of a firewall in endpoint security?

  • A. Monitor and detect suspicious activities on the endpoint
  • B. Encrypt the data transmitted between the endpoint and the network
  • C. Protect the endpoint from malware
  • D. Prevent unauthorized access to the endpoint

正解:D

解説:
Firewalls are a key component of endpoint security as they help prevent unauthorized access to the endpoint. Firewalls work by examining incoming and outgoing network traffic and applying a set of rules to allow or block specific connections. By filtering and monitoring network traffic, firewalls act as a barrier between the endpoint and potential threats, such as hackers or unauthorized users, ensuring only authorized and secure connections are established.


質問 # 85
Which of the following is a primary goal of monitoring security events "as they occur"?

  • A. To detect and respond to security incidents in a timely manner
  • B. To enforce security policies and access controls
  • C. To meet regulatory compliance requirements
  • D. To ensure zero incidents and vulnerabilities in the network

正解:A

解説:
Monitoring security events "as they occur" is primarily aimed at quickly identifying and responding to security incidents. By continuously monitoring for potential threats and vulnerabilities, organizations can detect and mitigate security incidents in a timely manner, minimizing damage and reducing downtime.


質問 # 86
Which of the following is an example of a network layer (Layer 3) security control?

  • A. Intrusion Detection System (IDS)
  • B. Firewall
  • C. Antivirus software
  • D. Encryption

正解:B

解説:
A firewall operates at the network layer (Layer 3) of the OSI model and is designed to control incoming and outgoing network traffic based on a set of predetermined security rules. It acts as a barrier between an internal network and external networks, filtering and inspecting packets to prevent unauthorized access and protect against various types of network attacks.


質問 # 87
Which malicious activity is NOT typically associated with cyber attacks?

  • A. Malware
  • B. Phishing
  • C. Data encryption
  • D. Denial of Service (DoS)

正解:C

解説:
Data encryption is a security measure used to protect data from unauthorized access. While encryption can be utilized by cyber attackers to make stolen data unreadable, it is not typically considered a malicious activity in itself. Instead, cyber attackers may employ techniques like phishing, denial of service attacks, or distributing malware to carry out their malicious intentions.


質問 # 88
Which of the following is a characteristic of a network-based firewall?

  • A. Provides protection against external threats only
  • B. Operates at the data link layer
  • C. Requires software installed on client devices
  • D. Inspects and filters traffic at the application layer

正解:A

解説:
Option 1: Incorrect. A network-based firewall inspects and filters traffic at the network layer, not the application layer.
Option 2: Incorrect. A network-based firewall operates at the network layer, not the data link layer.
Option 3: Correct. A network-based firewall provides protection against both external and internal threats.
Option 4: Incorrect. A network-based firewall does not require software installed on client devices.


質問 # 89
Which of the following features help to secure a wireless SoHo network from unauthorized access?

  • A. MAC filtering
  • B. SSID broadcast
  • C. Default admin credentials
  • D. Weak encryption

正解:A


質問 # 90
What is vishing?

  • A. A physical attack where an unauthorized person gains entry to a restricted area by following closely behind an authorized person.
  • B. A form of social engineering attack that uses voice or telephone calls to trick victims into revealing sensitive information.
  • C. A cyber attack where an attacker manipulates and deceives an individual to reveal sensitive information.
  • D. A type of phishing attack that targets specific individuals or organizations.

正解:B

解説:
Vishing, which stands for voice phishing, involves using voice or telephone calls to deceive and manipulate individuals into revealing sensitive information. The attacker may pretend to be a legitimate entity, such as a bank representative, and persuade the victim to provide personal or financial details over the phone. Vishing exploits the trust people often have in phone calls and can be used in combination with other attacks.


質問 # 91
Which of the following describes the purpose of a firewall in network infrastructure?

  • A. To identify and prevent unauthorized access to the network
  • B. To monitor network traffic for potential security threats
  • C. To provide high-speed connectivity between different networks
  • D. To regulate the flow of data between different network segments

正解:D

解説:
A firewall is a network security device that is designed to monitor and control the incoming and outgoing network traffic. It acts as a barrier between different network segments, regulating the flow of data according to predefined security policies. Firewalls help to prevent unauthorized access to the network by allowing only authorized traffic and blocking any potentially harmful traffic.


質問 # 92
Which of the following helps to ensure the confidentiality of data in computer operations?

  • A. Intrusion Detection System (IDS)
  • B. Access control lists (ACLs)
  • C. Antivirus software
  • D. Data integrity controls

正解:B

解説:
Access control lists (ACLs) are a security mechanism used in computer operations to enforce and manage access permissions for users and resources. ACLs enable organizations to control who can access specific data or resources, helping to ensure the confidentiality of sensitive information.


質問 # 93
Which of the following is a limitation of vulnerability databases?

  • A. They cover all known vulnerabilities in every software and hardware.
  • B. They provide real-time information on emerging threats.
  • C. They require minimal human effort for maintaining and updating.
  • D. They may not include vulnerabilities discovered by malicious actors.

正解:D

解説:
Vulnerability databases are an essential resource for cybersecurity professionals to stay informed about known vulnerabilities. However, these databases primarily rely on information shared by vendors, security researchers, and ethical hackers. Malicious actors, who may discover vulnerabilities independently, may not disclose them in such databases. Therefore, it is crucial to adopt a well-rounded approach to vulnerability management and consider potential undisclosed vulnerabilities.


質問 # 94
Which of the following is an example of a human-caused disaster?

  • A. Tornado
  • B. Cyberattack
  • C. Earthquake
  • D. Flood

正解:B

解説:
Cyberattacks, such as hacking, malware, or ransomware attacks, are considered human-caused disasters. They are intentional actions carried out by individuals or groups with malicious intent and can result in significant disruption, data loss, and financial damage if proper cybersecurity measures are not in place.


質問 # 95
Which of the following network technologies is commonly used to connect devices within a local area network (LAN)?

  • A. VPN
  • B. Ethernet
  • C. Wi-Fi
  • D. DSL

正解:B

解説:
Ethernet is a widely used network technology for connecting devices within a local area network (LAN). It provides a physical and data link layer protocol for wired connections, allowing devices to communicate over a LAN using Ethernet cables. Ethernet has various speeds and standards, including Ethernet over twisted pair (such as Cat 5e or Cat 6 cables), fiber optic cables, and other mediums.


質問 # 96
Which of the following activities is typically associated with reconnaissance in cybersecurity?

  • A. Exploiting vulnerabilities
  • B. Preventing unauthorized access
  • C. Identifying vulnerable systems
  • D. Gathering information about the target network

正解:D

解説:
Reconnaissance in cybersecurity involves gathering information about the target network, such as IP addresses, open ports, and potential vulnerabilities. This information is used to prepare for a potential attack by understanding the target's infrastructure and weaknesses.


質問 # 97
Which of the following is a secure method for sharing sensitive documentation with external parties?

  • A. Using an encrypted communication channel
  • B. Sending the documents via email attachments
  • C. Printing the documents and sending them through traditional mail
  • D. Uploading the documents to a public file-sharing service

正解:A

解説:
Sending sensitive documentation via email or public file-sharing services presents security risks. It is recommended to use an encrypted communication channel, such as secure file transfer protocol (SFTP) or a secure cloud-based collaboration platform, to protect the confidentiality and integrity of the information being shared.


質問 # 98
Which of the following tools is primarily used for analyzing network packets?

  • A. Cisco AnyConnect
  • B. Wireshark
  • C. Oracle Database
  • D. Norton Antivirus

正解:B

解説:
Wireshark is a popular open-source tool used for network packet analysis and protocol troubleshooting. It allows users to capture, examine, and analyze network packets in real-time. Wireshark provides detailed information about the different protocols, traffic patterns, and network anomalies, assisting cybersecurity professionals in diagnosing network issues, identifying security vulnerabilities, and detecting potential attacks.


質問 # 99
......

Cisco 100-160試験実践テスト問題:https://www.goshiken.com/Cisco/100-160-mondaishu.html

最新の無料100-160別格問題集をダウンロード:https://drive.google.com/open?id=1cZzFSSJJkg6LGYmulBOARvxOklHOlAjL