הכנה למבחן בניהול אבטחת מידע

What is NOT a basic component of an IDS?

1

שאלה #15668

		Analyzer
		Notifier
		Sensor
		User interface

There are three basic components of an IDS: a sensor, analyzer, and user (security administrator) interface.

מיין לפי

Barak Menachem 0 נקודות · יותר מ-6 חודשים

מוניטין: 1

ניראלי זה טעות, התשובה צריכה להיות UI, לא?

What does a host-based IDS use for analysis?

1

שאלה #15669

		Audit logs
		Traffic patterns
		Packet structure
		Promiscuous mode

The agent scrutinizes event logs, critical system files, and other auditable resources.

מיין לפי

An IDS does NOT use which of the following techniques for detecting intrusions?

1

שאלה #15670

		Model based
		Statistical based
		Authorization based
		State based

Rule-based IDSs are characterized by their expert system properties that create rules to detect system status information.

מיין לפי

Daniel Margalit 1 נקודות · יותר מ-6 חודשים

מוניטין: 515

Rule-based IDSs are characterized by their expert system properties that create rules to detect system status information.

Audit logs should record all of the following EXCEPT:

1

שאלה #15671

		Successful access attempts
		System performance measurements
		Failed access attempts
		Changes to user permissions

The audit data will reveal that a specific user accessed the file, the time of access, and the type of access.

מיין לפי

Clipping levels helps prevent:

1

שאלה #15672

		Unnecessary investigation by administrators
		Denial-of-service attacks
		Unauthorized users from logging on
		“Fat finger” attacks

Anything that occurs beyond the baseline would be considered worth reviewing in more detail.

מיין לפי

Audit logs should be protected for all of the reasons EXCEPT:

1

שאלה #15673

		Modification may impede an investigation.
		An attacker may try to alter them.
		They may contain confidential information.
		Standard format is critical for automated processing.

The audit trail data should be protected at the most sensitive system level.

מיין לפי

A penetration test is NOT designed to:

1

שאלה #15674

		Find vulnerabilities in a network
		Test incident response capabilities
		Alter system access permissions
		Exploit social engineering opportunities

In addition to finding holes in the security measures, a penetration test can be initiated to test an intrusion detection system and intrusion response capability.

מיין לפי

Access control systems should consider all of the following EXCEPT:

1

שאלה #15675

		Technical controls
		Legal requirements
		Sensitivity of information on the system
		Availability of trained staff

It is important to balance the goals of the organization’s access control policy with the technical mechanisms. This includes reviewing the legal requirements that are necessary to protect access; conducting a risk analysis that identifies the typical threats to the system; reviewing accepted industry practices; identifying users who need access and what type of access they need; and identifying the sensitivity of the information stored and processed on the system.

מיין לפי

Business continuity addresses:

1

שאלה #15676

		Availability
		Integrity
		Confidentiality
		Accountability

Business continuity addresses the availability leg of the security triad.

מיין לפי

Preparing a full-scale BCP can:

1

שאלה #15677

		Be quickly achieved
		Take a long time
		Ensure a separation of responsibilities
		Not involve vendors

Preparing a full-scale BCP can take a long time.

מיין לפי

הכנה למבחן בניהול אבטחת מידע

Discuss, Learn and be Happy דיון בשאלות

What is NOT a basic component of an IDS?

What does a host-based IDS use for analysis?

An IDS does NOT use which of the following techniques for detecting intrusions?

Audit logs should record all of the following EXCEPT:

Clipping levels helps prevent:

Audit logs should be protected for all of the reasons EXCEPT:

A penetration test is NOT designed to:

Access control systems should consider all of the following EXCEPT:

Business continuity addresses:

Preparing a full-scale BCP can:

בקשה לשינוי התשובה / תיקון שאלה gavel

בקשה למחיקת השאלהmood_bad

בקשה לשינוי התשובה / תיקון שאלה

בקשה למחיקת השאלה