Casp practice - Study guides, Class notes & Summaries

Several of your organization's users have requested permission to install certificates from a third party. Company policy states that before users can install these certificates, you must verify that the certificates are still valid. You need to check for revocation. What could you check to verify this information? (Choose all that apply.) A. CRL B. OCSP C. DNSSEC D. DRM - Answer Answer: A, B Explanation: You can use either a certificate revocation list (CRL) or Online Certific...

CASP Practice Exam 1 _ questions and answers already

You are the security administrator for your company. You are required to implement a solution that will provide the highest level of confidentiality possible to all data on the network. Two-factor token and biometric-based authentication is implemented for all users. Administrator-level accounts are tightly controlled and issued separately to each user needing administrative access. Auditing is enabled to log all transactions. All hard drives are protected using full disk encryption. All r...

CompTIA Advanced Security Practitioner (CASP) CAS-003, CH3: Key Terms (Reverse Definitions) Ans: informative security policy A list of permissions attached to an object, including files, folders, servers, routers, and so on. Such rule sets can be implemented on firewalls, switches, and other infrastructure devices to control access. Ans: access control list (ACL) A security control that is implemented to administer an organization's assets and personnel and includes security policies,...

Several of your organization's users have requested permission to install certificates from a third party. Company policy states that before users can install these certificates, you must verify that the certificates are still valid. You need to check for revocation. What could you check to verify this information? (Choose all that apply.) A. CRL B. OCSP C. DNSSEC D. DRM CORRECT ANSWER Answer: A, B Explanation: You can use either a certificate revocation list (CRL) or Online Cert...

CASP+PracticeTestExamQuestionsand Answers. SCENARIO DRAG DROP -Drag and drop the cloud deployment model to the associated use-case scenario. Options may be used only once or not at all. [SEE IMAGE] - Correct Answer Large multinational organization - Private cloud with IaaS Collection of organizations in the same industry - Community cloud with PaaS Organization that has an orchestration - Hybrid Cloud Marketing organization that outsources - Public cloud with SaaS Organization that has ...

The Chief Information Officer (CIO) is reviewing the IT centric BIA and RA documentation. The documentation shows that a single 24 hours downtime in a critical business function will cost the business $2.3 million. Additionally, the business unit which depends on the critical business function has determined that there is a high probability that a threat will materialize based on historical data. The CIO's budget does not allow for full system hardware replacement in case of a catastrophic fail...

You have been asked by a member of senior management to explain the importance of encryption and define what symmetric encryption offers. Which of the following offers the best explanation? A. Non-repudiation B. Confidentiality C. Hashing D. Privacy and authentication - B As the security administrator for your organization, you must be aware of all types of hashing algorithms. Which algorithm was developed by Ron Rivest and offers a 128-bit output? A. AES

Complete coverage of every topic on the CompTIA Advanced Security Practitioner certification exam by the experts! Get complete coverage of all objectives included on the CompTIA CASP+ exam CAS-003 from this comprehensive resource. Written by a team of leading information security experts, this authoritative guide fully addresses the skills required for securing a network and managing risk. You’ll find learning objectives at the beginning of each chapter, exam tips, practice exam questions, ...