• Home
  • Articles
  • Get The Most Updated 1D0-671 Dumps To Web Security Series Certification [Q24-Q46]

Get The Most Updated 1D0-671 Dumps To Web Security Series Certification [Q24-Q46]

Share

Get The Most Updated 1D0-671 Dumps To Web Security Series Certification

CIW Certified 1D0-671  Dumps Questions Valid 1D0-671 Materials

NEW QUESTION # 24
What is the primary use of hash (one-way) encryption in networking?

  • A. Encrypting files, for data confidentiality
  • B. User authentication, for non-repudiation
  • C. Signing files, for data integrity
  • D. Key exchange, for user authentication

Answer: C


NEW QUESTION # 25
You purchased a network scanner six months ago. In spite of regularly conducting scans using this software, you have noticed that attackers have been able to compromise your servers over the last month.
Which of the following is the most likely explanation for this problem?

  • A. The network scanner has a trojan.
  • B. The network scanner is no substitute for scans conducted by an individual.
  • C. The network scanner needs an update.
  • D. The network scanner needs to be replaced.

Answer: C


NEW QUESTION # 26
To implement a successful security system, you should:

  • A. find a product that can offer full protection against all threats.
  • B. use as many security principles and techniques as you can to protect each resource.
  • C. place your firewall and network in a public area so that authorized users have easy access to them to solve problems as they occur.
  • D. implement beta software and operating systems that hold the promise of enhanced security measures.

Answer: B


NEW QUESTION # 27
The vast majority of hackers are which type of attacker?

  • A. Spy
  • B. Disgruntled employee
  • C. Determined attacker
  • D. Casual attacker

Answer: D


NEW QUESTION # 28
Danielle was informed by her network administrator that an audit may be conducted during the night to determine the hosts that exist on the network and document any open ports. The next day, Danielle was unable to access any network services.
What may have occurred instead of the anticipated audit?

  • A. A zero-day attack
  • B. A brute-force attack
  • C. A scanning attack
  • D. A social engineering attack

Answer: C


NEW QUESTION # 29
Which type of attack exploits routed IP datagrams and is often found at the network layer?

  • A. Source routing
  • B. IP spoofing
  • C. SYN flooding
  • D. Route mangling

Answer: A


NEW QUESTION # 30
Irina has contracted with a company to provide Web design consulting services. The company has asked her to use several large files available via an HTTP server.
The IT department has provided Irina with user name and password, as well as the DNS name of the HTTP server. She then used this information to obtain the files she needs to complete her task using Mozilla Firefox.
Which of the following is a primary risk factor when authenticating with a standard HTTP server?

  • A. Irina has accessed the Web server using a non-standard Web browser.
  • B. HTTP uses cleartext transmission during authentication, which can lead to a man-in-the- middle attack.
  • C. Irina has used the wrong application for this protocol, thus increasing the likelihood of a man-in- the- middle attack.
  • D. A standard HTTP connection uses public-key encryption that is not sufficiently strong, inviting the possibility of a man-in-the-middle attack.

Answer: B


NEW QUESTION # 31
Which type of certificate is used to verify a company's Web server?

  • A. Software or publisher certificate
  • B. Personal certificate
  • C. Certificate authority certificate
  • D. Server certificate

Answer: D


NEW QUESTION # 32
Which of the following can help reduce the likelihood of a successful dictionary attack?

  • A. An IPSEC-based VPN
  • B. The use of Microsoft Active Directory
  • C. A security policy
  • D. A strong password policy

Answer: D


NEW QUESTION # 33
Consider the following diagram:
Which of the following best describes the protocol activity shown in the diagram, along with the most likely potential threat that accompanies this protocol?

  • A. The ICMP Time Exceeded message, with the threat of a denial-of-service attack
  • B. The DNS name query, with the threat of cache poisoning
  • C. The TCP three-way handshake, with the threat of a man-in-the-middle attack
  • D. The SIP three-way handshake, with the threat of a buffer overflow

Answer: C


NEW QUESTION # 34
Consider the following image of a packet capture:
Which of the following best describes the protocol used, along with its primary benefit?

  • A. It is an extended passive FTP session, which is necessary to support IPv6.
  • B. It is an active FTP session, which is supported by all FTP clients.
  • C. It is an active FTP session, which is necessary in order to support IPv6.
  • D. It is a passive FTP session, which is easier for firewalls to process.

Answer: D


NEW QUESTION # 35
Which term describes an outer corporate network, created using VPN technologies, that extends the corporate network to include suppliers and customers?

  • A. Virtual network perimeter
  • B. Public Key Infrastructure
  • C. Extended firewall network
  • D. Virtual network

Answer: A


NEW QUESTION # 36
Which of the following details should be included in documentation of an attack?

  • A. Estimates of how much the attack cost the company, and a list of the applications used by the attacker
  • B. An overview of the security policy and suggestions for the next response plan
  • C. The network resources involved in the attack, and recommendations for thwarting future attacks
  • D. The time and date of the attack, and the names of employees who were contacted during the response

Answer: D


NEW QUESTION # 37
Which type of attack requires that the hacker be physically located between the two legitimate hosts being attacked?

  • A. Brute-force and dictionary attack
  • B. E-mail virus attack
  • C. Man-in-the-middle attack
  • D. Bug-based attack

Answer: C


NEW QUESTION # 38
Which of the following is the device used to authenticate and encrypt packets in IPsec?

  • A. Internet Key Exchange (IKE)
  • B. Encapsulating Security Payload (ESP)
  • C. Encryption tunnel
  • D. Authentication Header (AH)

Answer: B


NEW QUESTION # 39
Which of the following tools allows you to implement packet filtering for a network?

  • A. Browser
  • B. Hub
  • C. Router
  • D. Bridge

Answer: C


NEW QUESTION # 40
Your organization has made a particularly unpopular policy decision. Your supervisor fears that a series of attacks may occur as a result. You have been assigned to increase automated auditing on a server.
When fulfilling this request, which of the following resources should you audit the most aggressively?

  • A. Authentication databases, including directory servers
  • B. Log files on firewall systems
  • C. Firewall settings for desktop systems
  • D. Intrusion detection systems, especially those placed on sensitive networks

Answer: A


NEW QUESTION # 41
Which tool is best suited for identifying applications and code on a Web server that can lead to a SQL injection attack?

  • A. A vulnerability scanner
  • B. A network switch
  • C. An intrusion-detection system
  • D. A packet sniffer

Answer: A


NEW QUESTION # 42
You are creating an information security policy for your company.
Which of the following activities will help you focus on creating policies for the most important resources?

  • A. Implementing non-repudiation
  • B. Auditing the firewall
  • C. Classifying systems
  • D. Logging users

Answer: C


NEW QUESTION # 43
What distinguishes hash encryption from other forms of encryption?

  • A. Hash encryption creates a mathematically matched key pair in which one half of the pair encrypts, and the other half decrypts.
  • B. Hash encryption is the encryption method of choice when conducting e-commerce transactions.
  • C. Hash encryption creates a single key that is used to encrypt and decrypt information.
  • D. Hash encryption is used for information that you want never to be decrypted or read.

Answer: D


NEW QUESTION # 44
Why should you notify the hacker's ISP if you have successfully identified a hacker?

  • A. You can have the ISP retaliate by placing a trojan or virus on the hacker's system.
  • B. You can have the ISP reconfigure the hacker's routing tables.
  • C. You can have the ISP terminate the connection so the attack can be stopped.
  • D. You can have the ISP retaliate by altering the hacker's login script.

Answer: C


NEW QUESTION # 45
How do activity logs help to implement and maintain a security plan?

  • A. Activity logs provide advice on firewall installation, because they enable network baseline creation.
  • B. Activity logs remind users to log on with strong passwords, because the logs can be analyzed to see if users are complying with policy.
  • C. Activity logs allow you to determine if and how an unauthorized activity occurred.
  • D. Activity logs dissuade would-be hackers from breaching your security.

Answer: C


NEW QUESTION # 46
......

1D0-671 Premium PDF & Test Engine Files with 126 Questions & Answers: https://www.free4dump.com/1D0-671-braindumps-torrent.html

Current 1D0-671 Exam Dumps [2024] Complete CIW Exam Smoothly: https://drive.google.com/open?id=1Xx6D1ZzSShOcqw8CKxNalcpFAyvtQGP3

Related Articles

more
CIW 1D0-671 Certification Practice Exam