The Refresh Guide To 312-38 Testing Material

NEW QUESTION 1
As a network administrator, you have implemented WPA2 encryption in your corporate wireless network. The WPA2's _______ integrity check mechanism provides security against a replay attack

• A. CRC-32
• B. CRC-MAC
• C. CBC-MAC
• D. CBC-32

Answer: C

NEW QUESTION 2
James wants to implement certain control measures to prevent denial-of-service attacks against the organization. Which of the following control measures can help James?

• A. Strong passwords
• B. Reduce the sessions time-out duration for the connection attempts
• C. A honeypot in DMZ
• D. Provide network-based anti-virus

Answer: B

NEW QUESTION 3
Which VPN QoS model guarantees the traffic from one customer edge (CE) to another?

• A. Pipe Model
• B. AAA model
• C. Hub-and-Spoke VPN model
• D. Hose mode

Answer: A

NEW QUESTION 4
An organization needs to adhere to the ________ rules for safeguarding and protecting the electronically stored health information of employees.

• A. HI PA A
• B. PCI DSS
• C. ISEC
• D. SOX

Answer: A

NEW QUESTION 5
Dan and Alex are business partners working together. Their Business-Partner Policy states that they should encrypt their emails before sending to each other. How will they ensure the authenticity of their emails?

• A. Dan will use his public key to encrypt his mails while Alex will use Dan's digital signature to verify the authenticity of the mails.
• B. Dan will use his private key to encrypt his mails while Alex will use his digital signature to verify the authenticity of the mails.
• C. Dan will use his digital signature to sign his mails while Alex will use his private key to verify the authenticity of the mails.
• D. Dan will use his digital signature to sign his mails while Alex will use Dan's public key to verify the authencity of the mails.

Answer: D

NEW QUESTION 6
Alex is administrating the firewall in the organization's network. What command will he use to check all the remote addresses and ports in numerical form?

• A. Netstat -o
• B. Netstat -a
• C. Netstat -ao
• D. Netstat -an

Answer: D

NEW QUESTION 7
Sam wants to implement a network-based IDS in the network. Sam finds out the one IDS solution which works is based on patterns matching. Which type of network-based IDS is Sam implementing?

• A. Behavior-based IDS
• B. Anomaly-based IDS
• C. Stateful protocol analysis
• D. Signature-based IDS

Answer: D

NEW QUESTION 8
Kyle is an IT consultant working on a contract for a large energy company in Houston. Kyle was hired on to do contract work three weeks ago so the company could prepare for an external IT security audit. With suggestions from upper management, Kyle has installed a network-based IDS system. This system checks for abnormal behavior and patterns found in network traffic that appear to be dissimilar from the traffic normally recorded by the IDS. What type of detection is this network-based IDS system using?

• A. This network-based IDS system is using anomaly detection.
• B. This network-based IDS system is using dissimilarity algorithms.
• C. This system is using misuse detection.
• D. This network-based IDS is utilizing definition-based detection.

Answer: A

NEW QUESTION 9
Stephanie is currently setting up email security so all company data is secured when passed through email. Stephanie first sets up encryption to make sure that a specific user's email is protected. Next, she needs to ensure that the incoming and the outgoing mail has not been modified or altered using digital signatures. What is Stephanie working on?

• A. Usability
• B. Data Integrity
• C. Availability
• D. Confidentiality

Answer: B

NEW QUESTION 10
Brendan wants to implement a hardware based RAID system in his network. He is thinking of choosing a suitable RAM type for the architectural setup in the system. The type he is interested in provides access times of up to 20 ns. Which type of RAM will he select for his RAID system?

• A. NVRAM
• B. SDRAM
• C. NAND flash memory
• D. SRAM

Answer: D

NEW QUESTION 11
John wants to implement a firewall service that works at the session layer of the OSI model. The firewall must also have the ability to hide the private network information. Which type of firewall service is John thinking of implementing?

• A. Application level gateway
• B. Circuit level gateway
• C. Stateful Multilayer Inspection
• D. Packet Filtering

Answer: B

NEW QUESTION 12
Malone is finishing up his incident handling plan for IT before giving it to his boss for review. He is outlining the incident response methodology and the steps that are involved. What is the last step he should list?

• A. Assign eradication.
• B. Recovery
• C. Containment
• D. A follow-up.

Answer: D

NEW QUESTION 13
What is the name of the authority that verifies the certificate authority in digital certificates?

• A. Directory management system
• B. Certificate authority
• C. Registration authority
• D. Certificate Management system

Answer: D

NEW QUESTION 14
Sean has built a site-to-site VPN architecture between the head office and the branch office of his company. When users in the branch office and head office try to communicate with each other, the traffic is
encapsulated. As the traffic passes though the gateway, it is encapsulated again. The header and payload both are encapsulated. This second encapsulation occurs only in the _________ implementation of a VPN.

• A. Full Mesh Mode
• B. Point-to-Point Mode
• C. Transport Mode
• D. Tunnel Mode

Answer: D

NEW QUESTION 15
As a network administrator, you have implemented WPA2 encryption in your corporate wireless network. The WPA2's _____ integrity check mechanism provides security against a replay attack

• A. CBC-32
• B. CRC-MAC
• C. CRC-32
• D. CBC-MAC

Answer: D

NEW QUESTION 16
Sam, a network administrator is using Wireshark to monitor the network traffic of the organization. He wants to detect TCP packets with no flag set to check for a specific attack attempt. Which filter will he use to view the traffic?

• A. Tcp.flags==0x000
• B. Tcp.flags==0000x
• C. Tcp.flags==000x0
• D. Tcp.flags==x0000

Answer: A

NEW QUESTION 17
Kelly is taking backups of the organization's data. Currently, he is taking backups of only those files which are created or modified after the last backup. What type of backup is Kelly using?

• A. Full backup
• B. Incremental backup
• C. Differential Backup
• D. Normal Backup

Answer: B

NEW QUESTION 18
A company wants to implement a data backup method which allows them to encrypt the data ensuring its security as well as access at any time and from any location. What is the appropriate backup method that should be implemented?

• A. Onsite backup
• B. Hot site backup
• C. Offsite backup
• D. Cloud backup

Answer: D

NEW QUESTION 19
Identify the minimum number of drives required to setup RAID level 5.

• A. Multiple
• B. 3
• C. 4
• D. 2

Answer: B

NEW QUESTION 20
A local bank wants to protect their card holder data. The bank should comply with the ________ standard to ensure the security of card holder data.

• A. HIPAA
• B. ISEC
• C. PCI DSS
• D. SOAX

Answer: C

NEW QUESTION 21
Which OSI layer does a Network Interface Card (NIC) work on?

• A. Physical layer
• B. Presentation layer
• C. Network layer
• D. Session layer

Answer: A

NEW QUESTION 22
Harry has sued the company claiming they made his personal information public on a social networking site in the United States. The company denies the allegations and consulted a/an ________ for legal advice to defend
them against this allegation.

• A. PR Specialist
• B. Attorney
• C. Incident Handler
• D. Evidence Manager

Answer: B

NEW QUESTION 23
An administrator wants to monitor and inspect large amounts of traffic and detect unauthorized attempts from inside the organization, with the help of an IDS. They are not able to
recognize the exact location to deploy the IDS sensor. Can you help him spot the location where the IDS sensor should be placed?

• A. Location 2
• B. Location 3
• C. Location 4
• D. Location 1

Answer: A

NEW QUESTION 24
......