Free CompTIA Security+ SY0-701 Practice Test

Mandatory access control (MAC) is a type of access control scheme that labels information/systems with a sensitivity (clearance) level and access is only granted if the individual has a clearance level equal to or greater than that level.

The solution that best aligns with the requirement of integrating network and security services within a cloud-based model for a distributed workforce is characterized by its ability to converge wide area networking capabilities and network security functions. This model should be delivered as a service, focusing on providing secure and efficient access irrespective of user location. While solutions aimed at protecting web applications, unifying threat management, and offering advanced firewall features could all enhance security in certain aspects, they do not offer the holistic, identity-centric, cloud-native convergence of networking and security required by the corporation's distributed nature. The correct solution employs a global cloud-native architecture and delivers a seamless service that extends consistent secure access across the organization.

MTBF stands for Mean Time Between Failures. It is a reliability metric that predicts the average time between system breakdowns or failures. A higher MTBF indicates a more reliable system that is likely to operate longer without issues, which is pivotal for business continuity and planning. It is calculated based on historical data and includes only operational periods between failures, not the time required for repair or maintenance.

Static code analysis is the analysis of software code without executing the software. Reviewing the lines of a program’s/software’s source code is a type of static code analysis. Dynamic code analysis is performed while it is being executed.

The statement is false because while changing the default port can reduce the surface visibility to automated attacks or scans, it is considered security by obscurity, which is not sufficient as a standalone security measure. Attackers can still discover services on non-standard ports using port scanning techniques. Proper security controls require the implementation of additional measures such as firewalls, intrusion prevention systems, and stringent access controls.

The correct answer is that this statement is true. Backup systems are a type of corrective control designed to restore systems and data to their appropriate state following an incident, such as data loss or corruption. They are essential for business continuity and disaster recovery strategies.

Incorrect answers can easily mislead as they may reference related concepts, such as redundant systems or preventive controls, which serve different purposes. Redundant systems are intended for immediate failover to avoid downtime, while preventive controls are designed to stop incidents from occurring in the first place.

A security policy is a high-level document that outlines an organization's approach to protecting its assets, including data, systems, and personnel. It establishes the framework for security controls and procedures, defining roles, responsibilities, and expected behavior. While security policies may include specific guidelines and procedures, their primary purpose is to provide overarching guidance and direction for the organization's security posture. Incident response plans, access control lists, and encryption standards are examples of more specific security controls that are typically guided by the security policy but are not the primary purpose of the policy itself.

Implementing scalability in the infrastructure planning ensures that the system can handle growth in user demand without performance degradation or security compromise. Vertical scaling might offer an immediate increase in resources but often leads to downtime during upgrades and has limitations on how much can be scaled up. On the other hand, selecting a more powerful server might provide temporary relief but doesn't provide a long-term scalable solution. Using a single geographic region for data storage may reduce complexity but doesn't consider the increased load that comes with growth. Horizontal scaling, which involves adding more servers or using cloud resources, offers flexibility, improved fault tolerance, and seamless scalability, making it the most effective option for sustained growth.

When responding to new threats identified in security bulletins, it's crucial to first assess and apply appropriate patches or updates provided for known vulnerabilities. While monitoring for indicators of compromise is important, it does not prevent an attack, and updating documentation or revising response plans can be performed subsequently.

A deterrent control is designed to discourage potential attackers from attempting a security breach, making it the correct answer. Deterrent controls include things like warning signs or false/visible security measures that increase the perceived risk for attackers.

This situation is indicative of a collision attack in which two different data sets produce the same hash value. Collision attacks exploit weaknesses in hashing algorithms to create such scenarios. The correct answer is not 'Hashing algorithm speed' as this refers to how quickly a hashing algorithm can process data and is not directly related to the uniqueness of hash outputs. 'Password entropy' is irrelevant because it pertains to the complexity and unpredictability of passwords. 'Key exchange method' is also incorrect because this refers to how cryptographic keys are exchanged between parties, not the uniqueness of hash function outputs.

The component designed to be integrated into a computing device for securing cryptographic keys is the Trusted Platform Module. It provides hardware-based security by managing keys within a protected environment, isolated from the operating system. A Hardware Security Module is a dedicated external device used for managing keys, not typically integrated directly on a computer's motherboard. Biometric sensors and secure boot are unrelated to the secure storage and handling of cryptographic keys. Biometric sensors are used for authentication purposes, while secure boot is a process ensuring the integrity of the operating system's boot process.

The escalation in unauthorized account access attempts is indicative of a potential brute force attack. The most direct method to mitigate this type of attack is to implement an account lockout policy, which would temporarily block accounts after a certain number of failed login attempts, helping to prevent unauthorized access. Increasing the logging level would only increase the detail of the incident records but not prevent the attempts. Performing a network scan may identify vulnerabilities but would not address the ongoing access attempts. Renewing SSL certificates is a regular maintenance task and would not prevent account brute force attempts.

An 'Ad Hoc' risk assessment is performed as required, without a regular schedule, often in response to significant changes or new threats to an organization's environment. It contrasts with recurring or continuous assessments that happen at regular intervals or constantly, respectively. A 'Qualitative' risk assessment refers to the process that prioritizes risks based on their severity and impact, rather than their frequency or timing.

There are times when certain data is required to be kept for a certain period of time due to legal, regulatory or policy reasons. There are also requirements pertaining to when data isn’t supposed to be kept. This is all referred to as data retention.