CCSP Free Practice Test

- (Exam Topic 3)
A user signs on to a cloud-based social media platform. In another browser tab, the user finds an article worth posting to the social media platform. The user clicks on the platform’s icon listed on the article’s website, and the article is automatically posted to the user’s account on the social media platform.
This is an example of what?
Response:

1. A. Single sign-on
2. B. Insecure direct identifiers
3. C. Identity federation
4. D. Cross-site scripting

Correct Answer: C

- (Exam Topic 2)
Which one of the following is not one of the three common threat modeling techniques? Response:

1. A. Focused on assets
2. B. Focused on attackers
3. C. Focused on software
4. D. Focused on social engineering

Correct Answer: D

- (Exam Topic 3)
Which of the following is an example of useful and sufficient data masking of the string “CCSP”? Response:

1. A. XCSP
2. B. PSCC
3. C. TtLp
4. D. 3X91

Correct Answer: C

- (Exam Topic 2)
Although performing BCDR tests at regular intervals is a best practice to ensure processes and documentation are still relevant and efficient, which of the following represents a reason to conduct a BCDR review outside of the regular interval?
Response:

1. A. Staff changes
2. B. Application changes
3. C. Regulatory changes
4. D. Management changes

Correct Answer: B

- (Exam Topic 3)
Web application firewalls (WAFs) are designed primarily to protect applications from common attacks like: Response:

1. A. Syn floods
2. B. Ransomware
3. C. XSS and SQL injection
4. D. Password cracking

Correct Answer: C