JK0-022 Online Practice Questions and Answers

Correct Answer: D

WEP is based on RC4, but due to errors in design and implementation, WEP is weak in a number of areas, two of which are the use of a static common key and poor implementation of initiation vectors (IVs). When the WEP key is discovered, the attacker can join the network and then listen in on all other wireless client communications.

Incorrect Answers:

A: RC4 itself is not crack-able, but the IV that is crack-able.

B: The initialization vector (IV) that WEP uses for encryption is 24-bit and IVs are reused with the same key. By examining the repeating result, it is easy for intruders to crack the WEP secret key, known as an IV attack.

C: WEP does not use the MD4 hashing algorithm, but RC4.

References:

Dulaney, Emmett and Chuck Eastton, CompTIA Security+ Study Guide, Sixth Edition, Sybex, Indianapolis, 2014, p 189.

Correct Answer: B

Currently, SNMP is predominantly used for monitoring and performance management. SNMPv3 defines a secure version of SNMP and also facilitates remote configuration of the SNMP entities.

Incorrect Answers:

A: SMTP is the email-forwarding protocol used on the Internet and intranets.

C: IPSec provides for encryption security using symmetric cryptography. This means communication partners use shared secret keys to encrypt and decrypt traffic over the IPSec VPN link.

D: You can use SNMP to interact with several network devices to acquire status information, performance data, statistics, and configuration details via a management console.

References:

http://en.wikipedia.org/wiki/Simple_Network_Management_Protocol Stewart, James Michael, CompTIA Security+ Review Guide, Sybex, Indianapolis, 2014, pp 40, 42, 50.

Correct Answer: A

Correct Answer: C

TACACS+ is an authentication, authorization, and accounting (AAA) service that makes us of TCP only. Incorrect Answers:

A: DIAMETER makes use of TCP, as well as SCTP.

B: RADIUS makes use of UDP.

D: Kerberos is not an authentication and accounting service, but an authentication protocol.

References: http://en.wikipedia.org/wiki/TACACS http://en.wikipedia.org/wiki/Diameter_(protocol) http://en.wikipedia.org/wiki/RADIUS http://en.wikipedia.org/wiki/Kerberos_(protocol)

Correct Answer: C

Since a user's password isn't stored on most operating systems (only a hash value is kept), most operating systems allow the administrator (or authorized person in this case) to change the value then the information/files/documents can be accessed. This is the safest way of recovery by an authorized person and is not dependent on those who leave the firm.

Incorrect Answers:

A: No user should be expected to share their password, regardless of the circumstances. Shared passwords goes against normal security procedures.

B: Storing passwords in a reversible form is not best practice and thus not risk avoidance.

D: This may not always be possible as the circumstances can differ vastly when employees leave the firm.

References:

Dulaney, Emmett and Chuck Eastton, CompTIA Security+ Study Guide, Sixth Edition, Sybex, Indianapolis, 2014, pp.140-142

Correct Answer: B

A minimum password age policy defines the period that a password must be used for before it can be changed.

Incorrect Answers:

A: Assigning users passwords based upon job role is not a secure password solution.

C: Preventing users from choosing their own passwords could make remembering passwords difficult. This could lead to a user having to record a generated password somewhere that is not secure.

D: This will cause a password to be retained for a longer period.

References:

https://technet.microsoft.com/en-us/library/cc779758(v=ws.10).aspx Stewart, James Michael, CompTIA Security+ Review Guide, Sybex, Indianapolis, 2014, pp 291- 293.

Correct Answer: A

Internal account auditing will allow you to switch the appropriate users to the proper accounts required after the switching of roles occurred and thus check that the principle of least privilege is followed.

Incorrect Answers:

B: Account disablement will prevent staff from being able to log on in any capacity which means that they will not be able to perform their duties.

C: Almost every operating system--server and workstation--allows you to configure WHEN an account can have access to the system. `When' is a time restraint and not switching roles. These will only make accounts valid for certain times as per the policy.

D: Password complexity will make passwords more secure and more difficult for miscreants to break it and log in to that user's account.

References:

Dulaney, Emmett and Chuck Eastton, CompTIA Security+ Study Guide, Sixth Edition, Sybex, Indianapolis, 2014, pp 140, 154

Correct Answer: A

All laptop cases include a built-in security slot in which a cable lock can be inserted to prevent it from easily being removed from the premises.

Incorrect Answers:

B: Acceptable use policies (AUPs) describe how the employees in an organization can use company systems and resources, both software and hardware. This policy should also outline the consequences for misuse. However it does not

prevent hardware loss as it does only address issues regarding the use of company resources.

C: GPS-Tracking is used for tracking the laptop in the event of it being stolen which means it does not prevent loss.

D: All a security camera can do is record what occurs, it cannot react to any incident such as theft.

References:

Dulaney, Emmett and Chuck Eastton, CompTIA Security+ Study Guide, Sixth Edition, Sybex, Indianapolis, 2014, pp 24, 113, 369, 419

Correct Answer: A

A Protocol Analyzer is a hardware device or more commonly a software program used to capture network data communications sent between devices on a network. Capturing and analyzing the packets sent from two systems that are not communicating properly could help determine the cause of the issue. Well known software protocol analyzers include Message Analyzer (formerly Network Monitor) from Microsoft and Wireshark (formerly Ethereal).

Incorrect Answers:

B: A router is used to route traffic between hosts on different networks. It is not used to capture and analyze network traffic.

C: A firewall is used to block unauthorized traffic from accessing hosts on a network. It is not used to capture and analyze network traffic.

D: A HIPS (Host Intrusion Prevention System) is software installed on a host which monitors the host for suspicious activity by analyzing events occurring within that host with the aim of detecting and preventing intrusion. It is not used to capture and analyze network traffic.

References: http://en.wikipedia.org/wiki/Wireshark

Correct Answer: D

Client-side validation should only be used to improve user experience, never for security purposes. A client-side input validation check can improve application performance by catching malformed input on the client and, therefore, saving a roundtrip to the server. However, client side validation can be easily bypassed and should never be used for security purposes. Always use server-side validation to protect your application from malicious attacks.

Incorrect Answers:

A: Client side validation is recommended to improve the user experience. However, it can be easily bypassed and should never be used for security purposes.

B: SSL encryption is used for sending data securely between a client and a server. However, it is not used for input validation.

C: Input validation must NOT rely on the user's knowledge of the application. If fact, it should assume a lack of knowledge on the user's part.

References: http://web.securityinnovation.com/appsec-weekly/blog/bid/67936/Do-Not-Rely-on-Client-Side- Validation