Menu
SearchAsk a Question+ Ask Question
Advertisement
  1. CompTIA
  2. Security Plus

Security Plus Questions and Answers (Q&A)

How should a company test the integrity of its backup data?
F. Manasseh, Software Developer
Answered: Sep 21, 2020
Users should ensure that back up copies have the same content as the original data file. • Check the sum for both the original and backup copies and compare them. • If the...Read More

7 Answers

1852 views
Which statements are true with regard to DAC (Discretionary Access Control)?
John Smith
Answered: Jan 21, 2025
Each object has an owner, which has full control over the object. The DAC model allows the owner of a resource to establish privileges to the information they own. The dac model would allow a...Read More

1 Answer

1040 views
Can you state one characteristic of MAC (Mandatory Access Control)?
John Smith
Answered: Jan 21, 2025
Use levels of security to classify users and data -mandatory access control is a strict hierarchical model, first developed by governments and it is based on classifying data on importance and...Read More

1 Answer

758 views
Which factors must be considered when implementing Kerberos authentication?
Wyatt Williams
Answered: Jan 21, 2025
Kerberos requires a centrally managed database of all user and resource passwords.

If the key distribution centre is down, all of other systems dependent on those keys wont be able to...Read More

1 Answer

709 views
What are some of the strongest form of authentications?
H.Jennifer
Answered: Apr 23, 2018
Biometrics is the technical term for body estimations and figurings. It alludes to measurements identified with human qualities. Biometrics authentication is utilized as a part of computer...Read More

3 Answers

682 views
What is used to make access decisions in a MAC (Mandatory Access Control) environment?
Pinguisweb
Answered: Jan 21, 2025
Sensitivity labels

Mandatory Access Control is a strict hierarchical model usually associated with governments. All objects are given security labels known as sensitivity labels and are...Read More

1 Answer

667 views
What are some of the clear-text protocols?
John Smith
Answered: Jan 21, 2025
Telnet
POP
FTP

There are many clear-text protocols still in use today. Telnet is still alive and well. FTP and POP email both use clear-text protocols. Creating a server to...Read More

1 Answer

575 views
Can you state one inherent flaw of DAC (Discretionary Access Control)?
John Smith
Answered: Jan 21, 2025
Dac (discretionary access control) relies only on the identity of the user or process, leaving room for a trojan horse. -in a dac model, network users have some flexibility regarding how information...Read More

1 Answer

573 views
Which virus types can be transmitted via email?
John Adney
Answered: Jan 21, 2025
I agree that it's not a boot record virus. Boot sector virus exists on the host and propagate by attaching themselves to executable. It's not worms because worms propagate through network...Read More

2 Answers

553 views
What can you tell about Pretty Good Privacy(PGP)?
H. callum, Content Writer
Answered: Feb 07, 2019
Pretty Good Privacy (PGP) is an encryption program that provides cryptographic privacy and authentication for data communication. PGP is used for signing, encrypting, and decrypting texts...Read More

2 Answers

525 views
How would you describe an access control mechanism that allows the data owner to create and administer access control?
Pinguisweb
Answered: Jan 21, 2025
DACs (Discretionary Access Control)

The DAC model allows the owner of a resource to establish privileges to the information they own. The DAC model would allow a user to share a file or...Read More

1 Answer

512 views
What type of attack is this?
John Smith
Answered: Jan 21, 2025
Buffersnarfing

Bluesnarfing is the exploiting of Bluetooth devices and retrieving data from the device. Bluejacking is another popular exploit against Bluetooth devices and is the sending...Read More

1 Answer

501 views
What must be deployed for Kerberos to function correctly?
John Smith
Answered: Jan 21, 2025
Time synchronization services for clients and servers.

Time synchronization is crucial because Kerberos uses server and workstation time as part of the authentication process.

1 Answer

478 views
What acts as a client in a RADIUS architecture?
John Smith
Answered: Jan 21, 2025
A Network Access Server

A Network Access Server (NAS) operates as a client of RADIUS. The client is responsible for passing user information to a designated RADIUS server, and then acting...Read More

1 Answer

474 views
Which access control methods provides the most granular access to protected objects?
Pinguisweb
Answered: Jan 21, 2025
Access control lists

Access control lists enable devices in your network to ignore requests from specified users or systems, or grant certain network capabilities to them. ACLs allow a...Read More

1 Answer

455 views

Related

Advertisement
Advertisement
Loading, please wait...

Email Sent
We have sent an email to your address "" with instructions to reset your password.