Which statement best describes a server type under an N-tier architecture?


A. A group of servers at a specific layer
B. A single server with a specific role
C. A group of servers with a unique role
D. A single server at a specific layer

SOAP services use which technology to format information?


A. SATA
B. PCI
C. XML
D. ISDN

Which security strategy requires using several, varying methods to protect IT systems against attacks?


A. Defense in depth
B. Three-way handshake
C. Covert channels
D. Exponential backoff algorithm

Which of the following is a characteristic of Public Key Infrastructure (PKI)?


A. Public-key cryptosystems are faster than symmetric-key cryptosystems.
B. Public-key cryptosystems distribute public-keys within digital signatures.
C. Public-key cryptosystems do not require a secure key distribution channel.
D. Public-key cryptosystems do not provide technical non-repudiation via digital signatures.

Which of the following levels of algorithms does Public Key Infrastructure (PKI) use?


A. RSA 1024 bit strength
B. AES 1024 bit strength
C. RSA 512 bit strength
D. AES 512 bit strength

A network security administrator is worried about potential man-in-the-middle attacks when users access a corporate web site from their workstations. Which of the following is the best remediation against this type of attack?


A. Implementing server-side PKI certificates for all connections
B. Mandating only client-side PKI certificates for all connections
C. Requiring client and server PKI certificates for all connections
D. Requiring strong authentication for all DNS queries

Which of the following defines the role of a root Certificate Authority (CA) in a Public Key Infrastructure (PKI)?


A. The root CA is the recovery agent used to encrypt data when a user's certificate is lost.
B. The root CA stores the user's hash value for safekeeping.
C. The CA is the trusted root that issues certificates.
D. The root CA is used to encrypt email messages to prevent unintended disclosure of data.

Company A and Company B have just merged and each has its own Public Key Infrastructure (PKI). What must the Certificate Authorities (CAs) establish so that the private PKIs for Company A and Company B trust one another and each private PKI can validate digital certificates from the other company?


A. Poly key exchange
B. Cross certification
C. Poly key reference
D. Cross-site exchange

Some passwords are stored using specialized encryption algorithms known as hashes. Why is this an appropriate method?


A. It is impossible to crack hashed user passwords unless the key used to encrypt them is obtained.
B. If a user forgets the password, it can be easily retrieved using the hash key stored by administrators.
C. Hashing is faster compared to more traditional encryption algorithms.
D. Passwords stored using hashes are non-reversible, making finding the password much more difficult.

For messages sent through an insecure channel, a properly implemented digital signature gives the receiver reason to believe the message was sent by the claimed sender. While using a digital signature, the message digest is encrypted with which key?


A. Sender's public key
B. Receiver's private key
C. Receiver's public key
D. Sender's private key