CISSP Free Practice Test

- (Exam Topic 15)
The security architect is designing and implementing an internal certification authority to generate digital certificates for all employees. Which of the following is the BEST solution to securely store the private keys?

1. A. Physically secured storage device
2. B. Encrypted flash drive
3. C. Public key infrastructure (PKI)
4. D. Trusted Platform Module (TPM)

Correct Answer: C

- (Exam Topic 9)
Which of the following wraps the decryption key of a full disk encryption implementation and ties the hard disk drive to a particular device?

1. A. Trusted Platform Module (TPM)
2. B. Preboot eXecution Environment (PXE)
3. C. Key Distribution Center (KDC)
4. D. Simple Key-Management for Internet Protocol (SKIP)

Correct Answer: A

- (Exam Topic 11)
For privacy protected data, which of the following roles has the highest authority for establishing dissemination rules for the data?

1. A. Information Systems Security Officer
2. B. Data Owner
3. C. System Security Architect
4. D. Security Requirements Analyst

Correct Answer: B

- (Exam Topic 9)
Which of the following is an authentication protocol in which a new random number is generated uniquely for each login session?

1. A. Challenge Handshake Authentication Protocol (CHAP)
2. B. Point-to-Point Protocol (PPP)
3. C. Extensible Authentication Protocol (EAP)
4. D. Password Authentication Protocol (PAP)

Correct Answer: A

- (Exam Topic 15)
The European Union (EU) General Data Protection Regulation (GDPR) requires organizations to implement appropriate technical and organizational measures to ensure a
level of security appropriate to the risk. The Data Owner should therefore consider which of the following requirements?

1. A. Data masking and encryption of personal data
2. B. Only to use encryption protocols approved by EU
3. C. Anonymization of personal data when transmitted to sources outside the EU
4. D. Never to store personal data of EU citizens outside the EU

Correct Answer: D