CISSP ISC2 Exam Questions and Free Practice Test

Question 139

- (Exam Topic 9)
Which of the following is considered best practice for preventing e-mail spoofing?

A. Spam filtering

B. Cryptographic signature

C. Uniform Resource Locator (URL) filtering

D. Reverse Domain Name Service (DNS) lookup

Correct Answer:B

Question 140

- (Exam Topic 4)
An external attacker has compromised an organization’s network security perimeter and installed a sniffer onto an inside computer. Which of the following is the MOST effective layer of security the organization could have implemented to mitigate the attacker’s ability to gain further information?

A. Implement packet filtering on the network firewalls

B. Install Host Based Intrusion Detection Systems (HIDS)

C. Require strong authentication for administrators

D. Implement logical network segmentation at the switches

Correct Answer:D

Question 141

- (Exam Topic 11)
Which of the following is a function of Security Assertion Markup Language (SAML)?

A. File allocation

B. Redundancy check

C. Extended validation

D. Policy enforcement

Correct Answer:D

Question 142

- (Exam Topic 11)
A software security engineer is developing a black box-based test plan that will measure the system's reaction to incorrect or illegal inputs or unexpected operational errors and situations. Match the functional testing techniques on the left with the correct input parameters on the right.
CISSP dumps exhibit
Solution:

Does this meet the goal?

A. Yes

B. No

Correct Answer:A

Question 143

- (Exam Topic 6)
Which of the following is a PRIMARY benefit of using a formalized security testing report format and structure?

A. Executive audiences will understand the outcomes of testing and most appropriate next steps for corrective actions to be taken

B. Technical teams will understand the testing objectives, testing strategies applied, and business risk associated with each vulnerability

C. Management teams will understand the testing objectives and reputational risk to the organization

D. Technical and management teams will better understand the testing objectives, results of each test phase, and potential impact levels

Correct Answer:D

Question 144

- (Exam Topic 9)
Copyright provides protection for which of the following?

A. Ideas expressed in literary works

B. A particular expression of an idea

C. New and non-obvious inventions

D. Discoveries of natural phenomena

Correct Answer:B

START CISSP EXAM