Which of the following types of fire detectors works by means of a photoelectric sensor?
A fire caused by combustible metals would be considered which class of fire?
Which of the following types of water sprinkler systems works by leaving the sprinkler head open and filling the pipe only when a fire has been detected?
Which of the following types of card keys contains rows of copper?
Tony's company manufactures proprietary cellphone-tracking devices. Now that employees will be issued laptops, Tony is concerned about the loss of confidential information if an employee's laptop is stolen. Which of the following represents the best defensive method?
Under what conditions can halon be expected to degrade into toxic compounds?
According to NIST perimeter lighting standards, critical areas should be illuminated to what measurement?
What type of biometric error is used to signify that an authorized user has been denied legitimate access?
In biometrics, the point at which the FAR equals the FRR is known as which of the following?
RSA's SecurID is an example of which of the following?
Which of the following is an example of an SSO technology?
When discussing the security of SSO systems, which of the following is considered a disadvantage?
SNORT is an example of a what?
What type of attack is also known as a race condition?
I/O drivers and utilities are typically found at what protected ring level?
What type of CPU can interleave two or more programs for execution at any one time?
This portion of the CPU performs arithmetic and logical operations on the binary data.
What security model is also known as the Chinese Wall?
What piece of documentation was developed to evaluate standalone systems and is a basis of measurement for confidentiality?
Which level of Orange Book protection is considered mandatory protection?
Which of the following is considered the totality of protection mechanisms within a computer system and is responsible for enforcing security?
Johnny is worried that someone might be able to intercept and decrypt his VoIP phone calls. Which of the following protocols is most closely associated with VoIP?
Which of the following wireless standards uses direct sequence spread spectrum (DSSS) by default?
What is a rogue AP?
Pulse code modulation (PCM) is used to digitize a voice with 8 bits of sampling for transmission on a DS0 line. What is the max rate of encoding for one of these voice channels?
A T1 uses which of the following to multiplex DS0s into a composite T1?
Which of the following focuses on how to repair and restore the data center and information at an original or new primary site?
This type of service is used to provide protection for source code in case the manufacturer declares bankruptcy or goes broke.
Which of the following describes the cooperative effort between the United States and Europe to exchange information about European citizens between European firms and North American parent corporations?
Which of the following best describes an approved type of forensic duplication?
Which of the following best describes the SET protocol?
Which of the following information-management systems uses artificial intelligence?
DNS lookups are typically performed on which of the following protocols and ports?
Bob is worried that the program someone gave him at DEFCON has been altered from the original. Which of the following is a valid technique that Bob can use to verify its authenticity?
Which of the following is not an email-encryption standard?
Which of the following best describes link encryption?
Diameter uses which of the following as a base?
The ACID test is used to describe what?
Which of the following best describes a Fault Resistant Disk Systems (FRDS) system?
Which of the following is a stream cipher?
Which of the following is considered the weakest mode of DES?
Which ethical standard states that "access and use of the Internet is a privilege and should be treated as such by all users"?
Which of the following would be considered the oldest and most well-known software-development method?
Which of the following types of viruses can infect both boot sectors and program files?
HTTPS uses which of the following ports?
Which of the following is considered the oldest type of database system?
The IEEE separates the OSI data link layer into two sublayers. What are they?
What is considered the most current version of wireless cellular technology?
This protocol started as a simplified version of X.25 and is used in packet-switched networks.
802.11 networks are identified by which of the following?
ISO 17799 evolved from what regional standard?
A Common Criteria rating of "Functionally Tested" means the design meets what level of verification?
Which of the following is not addressed by the Clark-Wilson security model?
Which of the following individuals' roles and responsibilities would include the responsibility for maintaining and protecting the company's assets and data?
Which of the following is the proper formula used to calculate ALE?
Which of the following best describes a qualitative assessment?
The facilitated risk assessment process is an example of what?
Classification levels such as confidential and secret are tied to which data classification scheme?
This method of dealing with risk is considered the least prudent course of action.
Your employer is pleased that you have become CISSP certified and would now like you to evaluate your company's security policy. Your boss believes that encryption should be used for all network traffic and that a $50,000 encrypted database should replace the current customer database. Based on what you know about risk management, what should your decision to use encryption and purchase the new database be based on? Choose the most correct answer.
The CISSP Cram Sheet
A Note from Series Editor Ed Tittel
About the Author
We Want to Hear from You!
The CISSP Certification Exam
Access-Control Systems and Methodology
System Architecture and Models
Telecommunications and Network Security
Applications and Systems-Development Security
Business Continuity Planning
Law, Investigations, and Ethics
Practice Exam 1
Answers to Practice Exam 1
Practice Exam 2
Answers to Practice Exam 2