CA1-001 Exam Details

  • Exam Code
    :CA1-001
  • Exam Name
    :CompTIA Advanced Security Practitioner (CASP) Beta
  • Certification
    :CompTIA Advanced Security Practitioner
  • Vendor
    :CompTIA
  • Total Questions
    :213 Q&As
  • Last Updated
    :Dec 15, 2021

CompTIA CA1-001 Online Questions & Answers

  • Question 111:

    You work as a Security Administrator for uCertify Inc. The company has a TCP/IP based network and uses the WS-Security service to enable message-level security for Web services. Which of the following mechanisms does it describe? Each correct answer represents a complete solution. Choose three.

    A. How to attach security tokens to ascertain the identity of sender.
    B. How to encrypt SOAP messages to assure confidentiality.
    C. How to sign SOAP messages to assure integrity.
    D. How to provide a guarantee of security.

  • Question 112:

    You work as a Network Administrator for uCertify Inc. You need to conduct network reconnaissance, which is carried out by a remote attacker attempting to gain information or access to a network on which it is not authorized/allowed. What will you do?

    A. Use a SuperScan
    B. Use a netcat utility
    C. Use a vulnerability scanner
    D. Use an idle scan

  • Question 113:

    SDLC phases include a minimum set of security tasks that are required to effectively incorporate security in the system development process. Which of the following are the key security activities for the development/acquisition phase? Each correct answer represents a complete solution. Choose two.

    A. Prepare initial documents for system certification and accreditation
    B. Conduct the risk assessment and use the results to supplement the baseline security controls
    C. Determination of privacy requirements
    D. Initial delineation of business requirements in terms of confidentiality, integrity, and availability

  • Question 114:

    What security objectives does cryptography meet:

    Each correct answer represents a complete solution. Choose all that apply.

    A. Authentication
    B. Confidentiality
    C. Data integrity
    D. Authorization

  • Question 115:

    A user has entered a user name and password at the beginning of the session, and accesses multiple applications. He does not need to re-authenticate for accessing each application. Which of the following authentication processes is he using?

    A. File authentication
    B. Mutual authentication
    C. Biometric authentication
    D. SSO authentication

  • Question 116:

    Which of the following statements are true about prototypes?

    Each correct answer represents a complete solution. Choose three.

    A. It reduces initial project risks within a business organization.
    B. It reduces the closeness between what a developer has defined for application architecture and what business management has understood.
    C. It confirms technology recommendations for an application.
    D. It helps verify some of the application requirements that are not dearly defined by a user.

  • Question 117:

    You work as a security administrator for uCertify Inc. You are conducting a security awareness campaign for the employees of the organization. What information will you provide to the employees about the security awareness program? Each correct answer represents a complete solution. Choose three.

    A. It improves awareness of the need to protect system resources.
    B. It improves the possibility for career advancement of the IT staff.
    C. It enhances the skills and knowledge so that the computer users can perform their jobs more securely.
    D. It constructs in-depth knowledge, as needed, to design, implement, or operate security programs for organizations and systems.

  • Question 118:

    John is hosting several Web sites on a single server. One is an e-commerce site that handles credit card transactions, while the other sites do not handle credit card data. Does this present a security problem, and if so, what?

    A. There is no issue with different types of sites on one server
    B. Credit card processing requires HIPAA compliance, the other sites do not
    C. Credit card processing requires PCI compliance, the other sites do not
    D. The other sites may allow privilege escalation to the e-commerce site

  • Question 119:

    Which is the process of comparing the business processes and performance metrics including cost, cycle time, productivity, or quality?

    A. Agreement
    B. Service Improvement Plan
    C. Benchmarking
    D. COBIT

  • Question 120:

    Which of the following are the benefits of the Single sign-on? Each correct answer represents a complete solution. Choose three.

    A. Reducing password fatigue from different user name and password combinations
    B. Increasing IT costs due to lower number of IT help desk calls about passwords
    C. Centralized reporting for compliance adherence
    D. Security on all levels of entry/exit/access to systems without the inconvenience of re-prompting users

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only CompTIA exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your CA1-001 exam preparations and CompTIA certification application, do not hesitate to visit our Vcedump.com to find your solutions here.