Casp exam - Study guides, Class notes & Summaries

Your company hosts several public Web sites on its Web server. Some of the sites implement the secure sockets layer (SSL) protocol. Which statement is not true of this protocol? SSL operates at the Network layer of the OSI model You are the security administrator for an organization. Management decides that all communication on the network should be encrypted using the data encryption standard (DES) algorithm. Which statement is true of this algorithm? A Triple DES (3DES) algorithm uses...

CASP+ Exam Cas-003 Study Verified Questions And Answers 2023 Best Large multinational organization wants to improve elasticity and resource usage of hardware that is housing on premise critical internal services. Private cloud with IaaS Collection of organizations in the same industry vertical developing services based on a common application stack. Community cloud with PaaS Organization that has an orchestration but that integrates with a large on premise footprint, subscribing to a smal...

CASP Exam A 1. Which characteristic of PGP is different from the use of formal trust certificates?: The establishment of a web of trust between the users

There have been some failures of the company's internal facing website. A security engineer has found the WAF to be the root cause of the failures. System logs show that the WAF has been unavailable for 14 hours over the past month, in four separate situations. One of these situations was a two hour scheduled maintenance time, aimed at improving the stability of the WAF. Using the MTTR based on the last month's performance figures, which of the following calculations is the percentage of uptim...

Which characteristic of PGP is different from the use of formal trust certificates? - The establishment of a web of trust between the users Your organization has implemented a PKI for issuing certificates. Your organization issued several certificates to a partner organization. You revoked the certificates today. Management is concerned that the revocation request grace period will prevent the certificates from being revoked in a timely manner. - It relates to the maximum response time take...

CASP PRACTICE EXAM 1 QUESTIONS WITH CORRECT ANSWERS Several of your organization's users have requested permission to install certificates from a third party. Company policy states that before users can install these certificates, you must verify that the certificates are still valid. You need to check for revocation. What could you check to verify this information? (Choose all that apply.) A. CRL B. OCSP C. DNSSEC D. DRM CORRECT ANSWER Answer: A, B Explanation: You can use eith...

FedVTE CASP Exam 41 Questions with Verified Answers A flaw in an online sporting goods website allows customers to purchase multiple quantities of goods and only be charged the single quantity price. To improve the site, management is demanding that the ecommerce application be tested to insure this flaw is corrected. Which of the following is the BEST combination of tools and or methods to use? - CORRECT ANSWER A. Blackbox testing using outside consultants C. Fuzzer and HTTP interceptor ...

2021 BEST CASP+ EXAM CAS-003 STUDY WITH COMPLETE SOLUTION

A company relies on an ICS to perform equipment monitoring functions that are federally mandated for operation of the facility. Fines for non-compliance could be costly. The ICS has known vulnerabilities and can no longer be patched or updated. Cyber-liability insurance cannot be obtained because insurance companies will not insure this equipment. Which of the following would be the BEST option to manage this risk to the company's production environment? - C. Mitigate the risk by restricti...