ACP-SEC1 Online Practice Questions and Answers

When using Alibaba Cloud Anti-DDoS Service/WAF in China Mainland, you must finish ICP Filing beforehand.

A. True

B. False

Cross Site Script (XSS) attacks refer to a kind of attack by tampering the webpage using HTML injection to insert malicious scripts so as to control the user's browser when the user browses the webpage XSS vulnerabilities may be used for user identity stealing (particularly the administrator identity), behavior hijacking, Trojan insertion and worm spreading, and also phishing

A. True

B. False

Baba Cloud security service provides in-depth defense. Which of the following services is dedicated for host security?

A. Anti-DDoS pro Service

B. WAF

C. Security Center

D. Data Risk Control

Alibaba Cloud Ant.-DDoS Premium Service is an advanced DDoS protection product It can defend against layer 4 and layer 7 attacks. Which of the following statements about Alibaba Cloud Anti-DDoS Premium Service is FALSE?

A. Anti-DDoS Premium Service provides precise traffic reports and attack details in real time to keep you informed of the current service details on time

B. Anti-DDoS Premium Service defends against various DDoS attacks, including but not limited to ICMP flood, UDP flood, TCP flood. SYN flood, and ACK flood attacks

C. Anti-DDoS Premium Service supports 2 billing modes: Unlimited and Insurance.

D. You can adjust the anti-DDoS elastic protection threshold to a higher level at any time, with the service interruption period no longer than 3 minutes

In which of the following scenarios is Alibaba Cloud Security Center applicable? (Number of correct answers 3)

A. Setting up web server to provide web service to public

B. Penetration testing

C. Creating an ECS with generic software

D. Batch server security OandM

E. Network security protection for ad campaigns or other activities

Alibaba Cloud Security's Data R.sk Control can effectively resolve junk registration, database hacking, and other service risk identification problems To use this service. you need to first collect service data. Which of the following methods can be used to collect information off Web application systems?

A. JavaScript

B. SDK

C. JavaScript, SDK

D. HTML5

Your applications are deployed on Alibaba Cloud ECS instances. You want to collect indicators by yourself for application layer monitoring. Which of the following functions provided by Alibaba Cloud CloudMonitor can be used for indicator collection, aggregation, and alerting?

A. CloudMonitor cannot meet these requirements

B. Cloud service monitoring

C. Site monitoring

D. Custom monitoring

When importing key material into Key Management Service (KMS), you will be given an import token and

public encryption key valid for 24 hours. The public key KMS provides must be used to encrypt your key

material before upload KMS allows you to choose different public key encryption algorithms.

Which ones are supported? (Number of correct answers; 3)

A. RSAES_OAEP_SHA_1

B. RSAES_ECDHE_V1 _5

C. RSAES_OAEP_SHA_256

D. RSAES PKCS1 V1 5

Various profit-oriented hacker groups exist on the Internet. They control a large number of server resources and can launch network attacks against a target server at any time Among those, one type of attack is common and destructive, which completely consumes resources of the target server so that normal customers cannot connect to the server. Which of the following belongs to this type of attack?

A. XSS attack

B. Webshell attack

C. DDoS attack

D. SQL injection

Alibaba Cloud Security Center is consisted of light-weight Agents and cloud engine to provide functions such as webshell scanning and removal, day vulnerability repair, security baseline inspection, and host access control, to protect the server security. Which of the following processes is NOT included in Security Center Agent?

A. AliHids

B. AliYunDunUpdate

C. AliYunDun

D. All Safe