• Home
  • Articles
  • Free CIW (1D0-671) Certification Sample Questions with Online Practice Test [Q75-Q98]

Free CIW (1D0-671) Certification Sample Questions with Online Practice Test [Q75-Q98]

Share

Free CIW (1D0-671) Certification Sample Questions with Online Practice Test

1D0-671  Certification Study Guide Pass 1D0-671 Fast

NEW QUESTION # 75
Which ICMP message type is used to synchronize time between two hosts?

  • A. Time Exceeded
  • B. Timestamp Request and Reply
  • C. Echo Request
  • D. Parameter Problem and Time Exceeded

Answer: B


NEW QUESTION # 76
What is the purpose of a revocation certificate?

  • A. It logs remote user activity on a VPN.
  • B. It prevents a man-in-the-middle attack on your network.
  • C. It allows you to quickly publish the fact that the key pair is no longer valid because it has been compromised.
  • D. It allows the user who creates asymmetric code to freely disseminate the code at his or her discretion.

Answer: C


NEW QUESTION # 77
Which type of attack requires that the hacker be physically located between the two legitimate hosts being attacked?

  • A. Man-in-the-middle attack
  • B. Bug-based attack
  • C. Brute-force and dictionary attack
  • D. E-mail virus attack

Answer: A


NEW QUESTION # 78
You are using a PKI solution that is based on Secure Sockets Layer (SSL).
Which of the following describes the function of the asymmetric-key-encryption algorithm used?

  • A. It encrypts the symmetric key.
  • B. It encrypts the hash code used for data integrity.
  • C. It encrypts all of the data.
  • D. It encrypts the X.509 key.

Answer: A


NEW QUESTION # 79
An application is creating hashes of each file on an attached storage device.
Which of the following will typically occur during this process?

  • A. Reduced risk of an attack
  • B. Increased risk of an attack
  • C. An increase in the amount of time it takes for the system to respond to requests
  • D. A reduction in the amount of time it takes for the system to respond to requests

Answer: C


NEW QUESTION # 80
Consider the following diagram:
Which of the following best describes the protocol activity shown in the diagram, along with the most likely potential threat that accompanies this protocol?

  • A. The DNS name query, with the threat of cache poisoning
  • B. The ICMP Time Exceeded message, with the threat of a denial-of-service attack
  • C. The SIP three-way handshake, with the threat of a buffer overflow
  • D. The TCP three-way handshake, with the threat of a man-in-the-middle attack

Answer: D


NEW QUESTION # 81
You have been asked to encrypt a large file using a secure encryption algorithm so you can send it via e-mail to your supervisor. Encryption speed is important. The key will not be transmitted across a network.
Which form of encryption should you use?

  • A. Symmetric
  • B. Hash
  • C. Asymmetric
  • D. PGP

Answer: A


NEW QUESTION # 82
Which type of encryption poses challenges to key transport?

  • A. Symmetric-key encryption
  • B. Diffie-Hellman
  • C. Hash encryption
  • D. Asymmetric-key encryption

Answer: A


NEW QUESTION # 83
What is the primary use of hash (one-way) encryption in networking?

  • A. Encrypting files, for data confidentiality
  • B. User authentication, for non-repudiation
  • C. Signing files, for data integrity
  • D. Key exchange, for user authentication

Answer: C


NEW QUESTION # 84
Which of the following is considered to be the most secure default firewall policy, yet usually causes the most work from an administrative perspective?

  • A. Allowing all access by default, then blocking only suspect network connections
  • B. Configuring the firewall to coordinate with the intrusion-detection system
  • C. Blocking all access by default, then allowing only necessary connections
  • D. Configuring the firewall to respond automatically to threats

Answer: C


NEW QUESTION # 85
At the beginning of an IPsec session, which activity occurs during the Internet Key Exchange (IKE)?

  • A. Determining the network identification number
  • B. Negotiating the version of IP to be used
  • C. Negotiating the authentication method
  • D. Determining the number of security associations

Answer: C


NEW QUESTION # 86
What is the first tool needed to create a secure networking environment?

  • A. Confidentiality
  • B. User authentication
  • C. Security policy
  • D. Auditing

Answer: C


NEW QUESTION # 87
What distinguishes hash encryption from other forms of encryption?

  • A. Hash encryption creates a single key that is used to encrypt and decrypt information.
  • B. Hash encryption creates a mathematically matched key pair in which one half of the pair encrypts, and the other half decrypts.
  • C. Hash encryption is the encryption method of choice when conducting e-commerce transactions.
  • D. Hash encryption is used for information that you want never to be decrypted or read.

Answer: D


NEW QUESTION # 88
Which of the following security measures presents the most risk?

  • A. A jail
  • B. A firewall application
  • C. A login script
  • D. A tripwire

Answer: A


NEW QUESTION # 89
How do activity logs help to implement and maintain a security plan?

  • A. Activity logs dissuade would-be hackers from breaching your security.
  • B. Activity logs provide advice on firewall installation, because they enable network baseline creation.
  • C. Activity logs allow you to determine if and how an unauthorized activity occurred.
  • D. Activity logs remind users to log on with strong passwords, because the logs can be analyzed to see if users are complying with policy.

Answer: C


NEW QUESTION # 90
Which component works with an operating system to increase its security ability?

  • A. Network scanner
  • B. Operating system add-on
  • C. Port scanner
  • D. Log analysis tool

Answer: B


NEW QUESTION # 91
Which of the following is the primary weakness of symmetric-key encryption?

  • A. Data encrypted using symmetric-key encryption is subject to corruption during transport.
  • B. Keys created using symmetric-key encryption are difficult to distribute securely.
  • C. Symmetric-key encryption does not provide the service of data confidentiality.
  • D. Symmetric-key encryption operates slower than asymmetric-key encryption.

Answer: B


NEW QUESTION # 92
Which of the following is the device used to authenticate and encrypt packets in IPsec?

  • A. Encryption tunnel
  • B. Authentication Header (AH)
  • C. Internet Key Exchange (IKE)
  • D. Encapsulating Security Payload (ESP)

Answer: D


NEW QUESTION # 93
Which of the following describes the practice of stateful multi-layer inspection?

  • A. Using a VLAN on a firewall to enable masquerading of private IP addresses
  • B. Inspecting packets in all layers of the OSI/RM with a packet filter
  • C. Prioritizing voice and video data to reduce congestion
  • D. Using Quality of Service (QoS) on a proxy-oriented firewall

Answer: B


NEW QUESTION # 94
What is the main purpose of reviewing a security incident after it has been resolved?

  • A. To discover and report that a piece of hardware or software has purportedly failed
  • B. To learn what can be changed or improved in your security policy
  • C. To bring charges against the ISP that carries the hacker's account
  • D. To discover who within your company should be reprimanded

Answer: B


NEW QUESTION # 95
Which of the following is a common problem with proxy servers?

  • A. Proxy servers cannot filter out specific application-layer traffic.
  • B. Proxy servers do not log incoming and outgoing access, so you will not be able to see details of successful and failed connections.
  • C. Proxy servers may return old cached information.
  • D. Because proxy servers do not mask network resources, hackers may be able to access all exposed systems.

Answer: C


NEW QUESTION # 96
Which security management concept is the ability for a department to accurately determine the costs of using various networking security services?

  • A. Performance management
  • B. Chargeback
  • C. Capacity forecasting
  • D. Amortization

Answer: B


NEW QUESTION # 97
You have implemented a service on a Linux system that allows a user to read and edit resources.
What is the function of this service?

  • A. Data integrity
  • B. Authentication
  • C. Access control
  • D. Intrusion detection

Answer: C


NEW QUESTION # 98
......

Get Perfect Results with Premium 1D0-671 Dumps Updated 126 Questions: https://www.prepawayete.com/CIW/1D0-671-practice-exam-dumps.html

1D0-671 Dumps PDF 2024 Program Your Preparation EXAM SUCCESS: https://drive.google.com/open?id=1dznQxm_2PKXSsqPijDtPxt5UL76a_-6c

Related Articles

more
CIW 1D0-671 Certification Practice Exam

Contact Us

If you have any question please leave me your email address, we will reply and send email to you in 12 hours.

Our Working Time: ( GMT 0:00-15:00 )
From Monday to Saturday

Support: Contact now 

Useful Links

Latest Updated