Cissp exam stuvia Study guides, Class notes & Summaries

1. Which of the following best describes the relationship between COBIT and ITIL? A. COBIT is a model for IT governance, whereas ITIL is a model for corporate governance. B. COBIT provides a corporate governance roadmap, whereas ITIL is a customizable framework for IT service management. C. COBIT defines IT goals, whereas ITIL provides the process-level steps on how to achieve them. D. COBIT provides a framework for achieving business goals, whereas ITIL defines a framework for achieving IT ...

CISSP Exam- Security Architecture and Engineering Correct 100%(RATED A)What is a Cache? - ANSWER is a local store of information that a system uses to operate. Caches store frequently used records to save clients the time of performing repeated looks us and reduce the burden on servers. Define client-server model - ANSWER Client-server model is a distributed application structure that partitions tasks or workloads between the providers of a resource or service, called servers, and service req...

Layer 2 of the OSI model is called the transport layer. - ANSWER False The IP address 192.168.5.5 is a private IP address according to RFC 1918. - ANSWER True The contention method used in Ethernet is called Token passing. - ANSWER False A Metropolitan-area network (MAN) is a type of LAN that encompasses a large area such as the downtown of a city. - ANSWER True 802.11g operates at a maximum of 11 Mbps - ANSWER False Wired Equivalent Privacy (WEP) was the first security measure us...

An organization is implementation g a preselected baseline of security controls but finds that some of the controls aren't relevant to their needs. What should they do - ANSWER Tailor the baseline to their requirements An admin is planning to deploy a database server and wants to ensure it is secure. She reviews a list of baseline security controls and identifies the security controls that apply to this database server. What is it called - ANSWER Scoping A data policy mandates teh use of ...

CIA Triangle - ANSWER Cornerstone of infosec. Confidentiality, Integrity, Availability Confidentiality (CIA Triangle) - ANSWER prevention of unauthorized disclosure of information; prevention of unauthorized read access to data Integrity (CIA Triangle) - ANSWER prevention of unauthorized modification of data; prevention of unauthorized write access to data Availability (CIA Triangle) - ANSWER ensures data is available when needed to authorized users Opposing forces to CIA - ANSWER DA...

What is the CIA triad? - ANSWER Confidentiality, Integrity, and Availability. Which are the elements of the information system that each organization is trying to protect. Confidentiality - ANSWER the concept of the measures used to ensure the protection of the security of the data, objects, or resources. The goal is to prevent or minimize unauthorized access to data. I.E. encryption, access controls, and steganography. Access Control - ANSWER The management of the relationship between sub...

Policy - ANSWER A high-level document that dictates management intentions toward security. Trademark - ANSWER A symbol, word, name, sound or thing that identifies the origin of a product or service in a particular trade. Patent - ANSWER Documents a process or synthesis and grants the owner a legally enforceable right to exclude others from using it Copyright - ANSWER A legal device that provides creator the right to control how the work is used. For Life plus 70 years Data Mining - A...

Half-duplex mode is being used for communication between two applications. At which layer of the OSI model is this connection being established?. - ANSWER Layer 5: the session layer, is responsible for setting up connections between applications, maintaining dialog control, and negotiating, establishing, maintaining, and ending the communication channel. This layer is responsible for name recognition and identification so that only the designated parties can participate in the session. A connect...

CISSP Exam Guide Application Security| 100 Questions| Correct 100%(RATED A) CISSP Exam Guide Application Security| 100 Questions| Correct 100%(RATED A) CISSP Exam Guide Application Security| 100 Questions| Correct 100%(RATED A) CISSP Exam Guide Application Security| 100 Questions| Correct 100%(RATED A) CISSP Exam Guide Application Security| 100 Questions| Correct 100%(RATED A) CISSP Exam Guide Application Security| 100 Questions| Correct 100%(RATED A) CISSP Exam Guide Applicati...

Layer 2 of the OSI model is called the transport layer. - ANSWER False The IP address 192.168.5.5 is a private IP address according to RFC 1918. - ANSWER True The contention method used in Ethernet is called Token passing. - ANSWER False A Metropolitan-area network (MAN) is a type of LAN that encompasses a large area such as the downtown of a city. - ANSWER True 802.11g operates at a maximum of 11 Mbps - ANSWER False Wired Equivalent Privacy (WEP) was the first security measure us...