100% satisfaction guarantee Immediately available after payment Both online and in PDF No strings attached
logo-home
Previously searched by you
Previously searched by you
logo
CISSP SYBEX QUESTIONS QUESTIONS AND ANSWERS WITH SOLUTIONS 2024 $14.99   Add to cart
Quickly navigate to
Preview
  2.  
  3. CISSP
  4.  
  5. CISSP

Exam (elaborations)

CISSP SYBEX QUESTIONS QUESTIONS AND ANSWERS WITH SOLUTIONS 2024
 6 views  0 purchase
  • Course
  • CISSP
  • Institution
  • CISSP

CISSP SYBEX QUESTIONS QUESTIONS AND ANSWERS WITH SOLUTIONS 2024

Preview 2 out of 14  pages

Document information

  • August 17, 2024
  • 14
  • 2024/2025
  • Exam (elaborations)
  • Questions & answers

Subjects

  • cissp sybex questions questions and answers with s

Written for

  • CISSP
  • CISSP

Seller

avatar-seller
Performance

Reviews received

Content preview

CISSP SYBEX QUESTIONS QUESTIONS
AND ANSWERS WITH SOLUTIONS 2024
Detective Access Controls - ANSWER Security guards, supervising users, incident investigations, IDS's



Physical Access Controls - ANSWER Guards, fences, motion detectors locked doors, sealed windows,
lights, backups, cable protections, laptop locks, swipe cards,dogs, CCTV, mantraps alarms



3 Recognized Authentication Factors - ANSWER What you: Have, Know, Are



Cognitive Password - ANSWER Series of ?'s about facts or predefined responses that only the subject
should know (ex. What's your birthday...etc.)



8 Biometric Factors - ANSWER Fingerprints, face scans, iris scans, retina scans, palm topography, palm
geography, heart/pulse pattern, voice pattern, signature dynamics, keystroke patterns



Issues related to user acceptance of biometric enrollment and throughput rate - ANSWER Enrollment
times longer than two minutes are unacceptable; subjects will typically accept a throughput rate of
about six seconds or faster



What Access Control technique employs security labels - ANSWER Mandatory Access Controls



The Bell-LaPadula, Biba, and Clark-Wilson access control models were all designed to protect a single
aspect of security. Name the corresponding aspect for each model. - ANSWER Bell-LaPadula protects
confidentiality, Biba and Clark-Wilson protect integrity



3 types of subjects and their roles in a security environment - ANSWER The user access objects on a
system to perform a work task, the owner is liable for protection of data, the data custodian is assigned
to classify and protect data



Why is separation of duties and responsibilities a common security practice? - ANSWER It prevents any
single subject from being able to circumvent or disable security mechanisms

, Principle of Least Privilege - ANSWER Subjects should be granted only the amount of access to objects
that is required to accomplish their assigned work tasks.



4 Key principles upon which access control relies - ANSWER Identification, Authentication, Authorization,
Accountability (IAAA)



How are domains related to Decentralized Access Control? - ANSWER A domain is a realm of trust that
shares a common security policy. This is a form of decentralized access control



Why is monitoring an important part of a security policy? - ANSWER It's used to watch for security policy
violations and to detect unauthorized or abnormal activities



What are the functions of an IDS - ANSWER To automate the inspection of audit logs, and real time
system events, detects intrusion attempts, and watches for violations of confidentiality, integrity, and
availability



Pros and Cons of Host Based IDS - ANSWER Can: Pinpoint resources compromised by a malicious user

Can't: Detect network only attacks or on other systems, has difficulty detecting DoS attacks, and can be
detected by intruders



Pros and Cons of Network Based IDS - ANSWER Can: Montior a large network, can be hardened against
attack.

Can't: handle large data flows, doesn't work well on switched networks, can't pinpoint compromised
resources



Differences between knowledge based and behavior based detections methods used by IDS - ANSWER
Knowledge based uses a signature database and tries to match monitored events to that database.
Behavior based learns about the normal activities on your system through watching and learning



What is a honey pot and what is it used for? - ANSWER Honey pots are face networks used to lure
intruders in order to create sufficient audit trails for tracking them down and prosecuting.

The benefits of buying summaries with Stuvia:

Guaranteed quality through customer reviews

Guaranteed quality through customer reviews

Stuvia customers have reviewed more than 700,000 summaries. This how you know that you are buying the best documents.

Quick and easy check-out

Quick and easy check-out

You can quickly pay through credit card or Stuvia-credit for the summaries. There is no membership needed.

Focus on what matters

Focus on what matters

Your fellow students write the study notes themselves, which is why the documents are always reliable and up-to-date. This ensures you quickly get to the core!

Frequently asked questions

What do I get when I buy this document?

You get a PDF, available immediately after your purchase. The purchased document is accessible anytime, anywhere and indefinitely through your profile.

Satisfaction guarantee: how does it work?

Our satisfaction guarantee ensures that you always find a study document that suits you well. You fill out a form, and our customer service team takes care of the rest.

Who am I buying these notes from?

Stuvia is a marketplace, so you are not buying this document from us, but from seller Performance. Stuvia facilitates payment to the seller.

Will I be stuck with a subscription?

No, you only buy these notes for $14.99. You're not tied to anything after your purchase.

Can Stuvia be trusted?

4.6 stars on Google & Trustpilot (+1000 reviews)

83100 documents were sold in the last 30 days

Founded in 2010, the go-to place to buy study notes for 14 years now

Start selling
$14.99
  • (0)
  Add to cart