Testking offers free demo for SSCP exam. "System Security Certified Practitioner (SSCP)", also known as SSCP exam, is a ISC2 Certification. This set of posts, Passing the ISC2 SSCP exam, will help you answer those questions. The SSCP Questions & Answers covers all the knowledge points of the real exam. 100% real ISC2 SSCP exams and revised by experts!
Q1. ORRECT TEXT
Trend Analysis involves analyzing historical ___________ files in order to look for patterns of abuse or misuse.
A. Log files
Answer: A
Q2. Which of the following DoS attacks use ICMP? (Choose two)
A. SYN attack
B. Smurf attack
C. Ping of death
D. UDP flood
E. NMAP
Answer: BC
Q3. Of the protocols list, which one is connection oriented?
A. IP
B. UDP
C. DNS
D. TCP
E. All protocols listed are connection oriented
Answer: D
Q4. What security principle is based on the division of job responsibilities - designed to prevent fraud?
A. Mandatory Access Control
B. Separation of Duties
C. Information Systems Auditing
D. Concept of Least Privilege
Answer: B
Q5. Define the term tuple.
A. A record in a relational database
B. An unordered set of values
C. An ordered set of rules placed in an ACL
D. A method of joining HIDS and NIDS together
E. Values placed in a flat database such as Excel
Answer: A
Q6. DES - Data Encryption standard has a 128 bit key and is very difficult to break.
A. True
B. False
Answer: B
Q7. A salami attack refers to what type of activity?
A. Embedding or hiding data inside of a legitimate communication - a picture, etc.
B. Hijacking a session and stealing passwords
C. Committing computer crimes in such small doses that they almost go unnoticed
D. Setting a program to attack a website at11:59 am on New Year's Eve
Answer: C
Q8. __________ attacks capitalize on programming errors and can allow the originator to gain additional privileges on a machine.
A. SYN Flood
B. Buffer Overflow
C. Denial of Service
D. Coordinated
E. Distributed Denial of Service
Answer: B