312-50v12 Free Practice Test

- (Exam Topic 3)
Websites and web portals that provide web services commonly use the Simple Object Access Protocol (SOAP).
Which of the following is an incorrect definition or characteristics of the protocol?

1. A. Exchanges data between web services
2. B. Only compatible with the application protocol HTTP
3. C. Provides a structured model for messaging
4. D. Based on XML

Correct Answer: B

- (Exam Topic 1)
Which of the following algorithms can be used to guarantee the integrity of messages being sent, in transit, or stored?

1. A. symmetric algorithms
2. B. asymmetric algorithms
3. C. hashing algorithms
4. D. integrity algorithms

Correct Answer: C

- (Exam Topic 2)
Take a look at the following attack on a Web Server using obstructed URL:

How would you protect from these attacks?

1. A. Configure the Web Server to deny requests involving "hex encoded" characters
2. B. Create rules in IDS to alert on strange Unicode requests
3. C. Use SSL authentication on Web Servers
4. D. Enable Active Scripts Detection at the firewall and routers

Correct Answer: B

- (Exam Topic 3)
What is the least important information when you analyze a public IP address in a security alert?

1. A. DNS
2. B. Whois
3. C. Geolocation
4. D. ARP

Correct Answer: D

- (Exam Topic 3)
Dorian Is sending a digitally signed email to Polly, with which key is Dorian signing this message and how is Poly validating It?

1. A. Dorian is signing the message with his public ke
2. B. and Poly will verify that the message came from Dorian by using Dorian's private key.
3. C. Dorian Is signing the message with Polys public ke
4. D. and Poly will verify that the message came from Dorian by using Dorian's public key.
5. E. Dorian is signing the message with his private ke
6. F. and Poly will verify that the message came from Dorian by using Dorian's public key.
7. G. Dorian is signing the message with Polys private ke
8. H. and Poly will verify mat the message came from Dorian by using Dorian's public key.

Correct Answer: C
https://blog.mailfence.com/how-do-digital-signatures-work/ https://en.wikipedia.org/wiki/Digital_signature
A digital signature is a mathematical technique used to validate the authenticity and integrity of a message, software, or digital document. It's the digital equivalent of a handwritten signature or stamped seal, but it offers far more inherent security. A digital signature is intended to solve the problem of tampering and impersonation in digital communications.
Digital signatures can provide evidence of origin, identity, and status of electronic documents, transactions, or digital messages. Signers can also use them to acknowledge informed consent.
Digital signatures are based on public-key cryptography, also known as asymmetric cryptography. Two keys are generated using a public key algorithm, such as RSA (Rivest-Shamir-Adleman),
mathematically linked pair of keys, one private and one public.
creating a Digital signatures work through public-key cryptography's
two mutually authenticating cryptographic keys.
The individual who creates the digital signature uses a private key
only way to decrypt that data is with the signer's public key.
to encrypt signature-related data, while the