CCSP Free Practice Test

- (Exam Topic 3)
With IaaS, what is responsible for handling the security and control over the volume storage space?

1. A. Management plane
2. B. Operating system
3. C. Application
4. D. Hypervisor

Correct Answer: B
Volume storage is allocated via a LUN to a system and then treated the same as any traditional storage. The operating system is responsible for formatting and securing volume storage as well as controlling all access to it. Applications, although they may use volume storage and have permissions to write to it, are not responsible for its formatting and security. Both a hypervisor and the management plane are outside of an individual system and are not responsible for managing the files and storage within that system.

- (Exam Topic 4)
Which of the following is not a risk management framework?

1. A. COBIT
2. B. Hex GBL
3. C. ISO 31000:2009
4. D. NIST SP 800-37

Correct Answer: B
Hex GBL is a reference to a computer part in Terry Pratchett’s fictional Discworld universe. The rest are not.

- (Exam Topic 3)
Which data state would be most likely to use digital signatures as a security protection mechanism?

1. A. Data in use
2. B. Data in transit
3. C. Archived
4. D. Data at rest

Correct Answer: A
During the data-in-use state, the information has already been accessed from storage and transmitted to the service, so reliance on a technology such as digital signatures is imperative to ensure security and complement the security methods used during previous states. Data in transit relies on technologies such as TLS to encrypt network transmission of packets for security. Data at rest primarily uses encryption for stored file objects. Archived data would be the same as data at rest.

- (Exam Topic 4)
Which of the following best describes data masking?

1. A. A method for creating similar but inauthentic datasets used for software testing and user training.
2. B. A method used to protect prying eyes from data such as social security numbers and credit card data.
3. C. A method where the last few numbers in a dataset are not obscure
4. D. These are often used for authentication.
5. E. Data masking involves stripping out all digits in a string of numbers so as to obscure the original number.

Correct Answer: A
All of these answers are actually correct, but A is the best answer, because it is the most general, includes the others, and is therefore the optimum choice. This is a good example of the type of question that can appear on the actual exam.

- (Exam Topic 1)
What is the primary reason that makes resolving jurisdictional conflicts complicated?

1. A. Different technology standards
2. B. Costs
3. C. Language barriers
4. D. Lack of international authority

Correct Answer: D
With international operations, systems ultimately cross many jurisdictional boundaries, and many times, they conflict with each other. The major hurdle to overcome for an organization is the lack of an ultimate international authority to mediate such conflicts, with a likely result of legal efforts in each jurisdiction.