ISC-SSCP

A potential problem related to the physical installation of the Iris Scanner in regards to the usage of the iris pattern within a biometric system is:

In Mandatory Access Control, sensitivity labels attached to object contain what information?

What are the components of an object's sensitivity label?

What does it mean to say that sensitivity labels are "incomparable"?

Which of the following is true about Kerberos?

Which of the following is needed for System Accountability?

What is Kerberos?

The three classic ways of authenticating yourself to the computer security software are by something you know, by something you have, and by something:

A timely review of system access audit records would be an example of which of the basic security functions?

A confidential number used as an authentication factor to verify a user's identity is called a:

Which of the following exemplifies proper separation of duties?

Which of the following is not a logical control when implementing logical access security?

A department manager has read access to the salaries of the employees in his/her department but not to the salaries of employees in other departments. A database security mechanism that enforces this policy would typically be said to provide which of the following?

Which of the following would constitute the best example of a password to use for access to a system by a network administrator?

The number of violations that will be accepted or forgiven before a violation record is produced is called which of the following?

The number of violations that will be accepted or forgiven before a violation record is produced is called which of the following?

Examples of types of physical access controls include all EXCEPT which of the following?

Guards are appropriate whenever the function required by the security program involves which of the following?

Which of the following is the most reliable authentication method for remote access?

Which of the following is the most reliable, secure means of removing data from magnetic storage media such as a magnetic tape, or a cassette?

Which of the following is true of two-factor authentication?

The primary service provided by Kerberos is which of the following?

Which of the following is NOT a type of motion detector?

Which of the following is NOT a technique used to perform a penetration test?

Which of the following division is defined in the TCSEC (Orange Book) as minimal protection?

Which of the following was developed by the National Computer Security Center (NCSC) for the US Department of Defense ?

To control access by a subject (an active entity such as individual or process) to an object (a passive entity such as a file) involves setting up:

Which access control type has a central authority that determine to what objects the subjects have access to and it is based on role or on the organizational security policy?

What is called the use of technologies such as fingerprint, retina, and iris scans to authenticate the individuals requesting access to resources?

What are called user interfaces that limit the functions that can be selected by a user?