SSCP

SSCP FEDVTE EXAM / QUESTIONS AND VERIFIED ANSWERS 2023/2024 / ALL CORRECT.

SSCP FEDVTE EXAM / 120+ QUESTIONS AND VERIFIED ANSWERS 2023/2024 / ALL CORRECT. SSCP Test Questions 2023 1. B: DES - Data Encryption standard has a 128 bit key and is very difficult to break. A. True B. False 2. B: What is the main difference between computer abuse and computer crime? A. Amount of damage B. Intentions of the perpetrator C. Method of compromise D. Abuse = company insider; crime = company outsider 3. C: A standardized list of the most common security weaknesses and e...

SSCP FEDVTE EXAM / QUESTIONS AND VERIFIED ANSWERS 2023/2024 / ALL CORRECT

SSCP FEDVTE EXAM / 120+ QUESTIONS AND VERIFIED ANSWERS 2023/2024 / ALL CORRECT. SSCP Test Questions 2023 1. B: DES - Data Encryption standard has a 128 bit key and is very difficult to break. A. True B. False 2. B: What is the main difference between computer abuse and computer crime? A. Amount of damage B. Intentions of the perpetrator C. Method of compromise D. Abuse = company insider; crime = company outsider 3. C: A standardized list of the most common security weaknesses and e...

DES - Data Encryption standard has a 128 bit key and is very difficult to break. A. True B. False correct answer: B What is the main difference between computer abuse and computer crime? A. Amount of damage B. Intentions of the perpetrator C. Method of compromise D. Abuse = company insider; crime = company outsider correct answer: B A standardized list of the most common security weaknesses and exploits is the __________. A. SANS Top 10 B. CSI/FBI Computer Crime Study C. C...

CIANA Security Paradigm correct answer: 1. Confidentiality 2. Integrity 3. Authorization 4. Nonrepudiation 5. Authentication Confidentiality correct answer: violated if any process or person can read, copy, redistribute, or make use of data we deem private or of competitive advantage worthy of protection as trade secrets, proprietary, or restricted information ; the first of the CIANA security paradigm ; sharing secrets ; legal and ethical concept abut privileged communications or priv...

Referred to as the AAA of access control: authentication, authorization, and accounting correct answer: AAA, Triple A A list of subjects and assigned rights used in access control. correct answer: access control list (ACL) Referred to as the AAA of access control: authentication, authorization, and accounting. correct answer: AAA/ Triple A A list of subjects and assigned rights used in access control. correct answer: access control list (ACL) Formal acceptance by management that...

ARO correct answer: Incidents/year What does STRIDE stand for? correct answer: Spoofing Tampering Repudiation Information disclosure Denial of service Elevation of privilege Reduction Analysis correct answer: Breaks a system down into smaller components What does repeated software deficiencies indicate? correct answer: A need for a software architecture change What should threat modeling do? correct answer: Inform the rest of the security program Honeypot correct answer...

Availability correct answer: Refers to the ability to access and use information systems when and as needed to support an organization's operations. Breach correct answer: The intentional or unintentional release of secure information to an untrusted environment. CMDB correct answer: A configuration management database (CMDB) is a repository that contains a collection of IT assets that are referred to as configuration items. Compensating Controls correct answer: Introduced when the...

What is salt in the IT World? correct answer: random piece of additional input data that provided to a one way hashing function Salting is often used with what? correct answer: passwords and passphrases In Salting what is stored? correct answer: the hash is stored not the actual password or passphrase and the salt is also stored What does salting ensure? correct answer: that each user password is hashed uniquely What attack does salting defend against? correct answer: Attack on ...