CISSP Free Practice Test

- (Exam Topic 10)
Host-Based Intrusion Protection (HIPS) systems are often deployed in monitoring or learning mode during their initial implementation. What is the objective of starting in this mode?

1. A. Automatically create exceptions for specific actions or files
2. B. Determine which files are unsafe to access and blacklist them
3. C. Automatically whitelist actions or files known to the system
4. D. Build a baseline of normal or safe system events for review

Correct Answer: D

- (Exam Topic 10)
Refer to the information below to answer the question.
In a Multilevel Security (MLS) system, the following sensitivity labels are used in increasing levels of sensitivity: restricted, confidential, secret, top secret. Table A lists the clearance levels for four users, while Table B lists the security classes of four different files.

In a Bell-LaPadula system, which user cannot write to File 3?

1. A. User A
2. B. User B
3. C. User C
4. D. User D

Correct Answer: D

- (Exam Topic 12)
Reciprocal backup site agreements are considered to be

1. A. a better alternative than the use of warm sites.
2. B. difficult to test for complex systems.
3. C. easy to implement for similar types of organizations.
4. D. easy to test and implement for complex systems.

Correct Answer: B

- (Exam Topic 7)
What should be the FIRST action to protect the chain of evidence when a desktop computer is involved?

1. A. Take the computer to a forensic lab
2. B. Make a copy of the hard drive
3. C. Start documenting
4. D. Turn off the computer

Correct Answer: C

- (Exam Topic 15)
A company is planning to implement a private cloud infrastructure. Which of the following recommendations will support the move to a cloud infrastructure?

1. A. Implement a virtual local area network (VLAN) for each department and create a separate subnet for each VLAN.
2. B. Implement software-defined networking (SDN) to provide the ability for the network infrastructure to be integrated with the control and data planes.
3. C. Implement a virtual local area network (VLAN) to logically separate the local area network (LAN) from the physical switches.
4. D. implement software-defined networking (SDN) to provide the ability to apply high-level policies to shape and reorder network traffic based on users, devices and applications.

Correct Answer: D