CA1-001 Exam Details

  • Exam Code
    :CA1-001
  • Exam Name
    :CompTIA Advanced Security Practitioner (CASP) Beta
  • Certification
    :CompTIA Advanced Security Practitioner
  • Vendor
    :CompTIA
  • Total Questions
    :213 Q&As
  • Last Updated
    :Dec 15, 2021

CompTIA CA1-001 Online Questions & Answers

  • Question 191:

    Derrick works as a Security Administrator for a police station. He wants to determine the minimum CIA levels for his organization. Which of the following best represents the minimum CIA levels for a police departments data systems?

    A. Confidentiality = high, Integrity = high, Availability = high
    B. Confidentiality = moderate. Integrity = moderate, Availability = high
    C. Confidentiality = low. Integrity = low. Availability = low
    D. Confidentiality = high, Integrity = moderate, Availability = moderate

  • Question 192:

    Which of the following are the benefits of public cloud computing? Each correct answer represents a complete solution. Choose three.

    A. Sensitive data
    B. Scalability
    C. Automation
    D. Elasticity

  • Question 193:

    Which of the following arise every time an application takes a user-supplied data and sends it to a Web browser without first confirming or encoding the content?

    A. Injection flaws
    B. Cookies
    C. One-click attacks
    D. XSS flaws

  • Question 194:

    Which of the following is a financial estimate whose purpose is to help consumers and enterprise managers determine direct and indirect costs of a product or system?

    A. Total cost of acquisition
    B. Total cost of ownership
    C. Total benefits of ownership
    D. Activity-based costing

  • Question 195:

    Mark, a malicious hacker, submits Cross-Site Scripting (XSS) exploit code to the Website of the Internet forum for online discussion. When a user visits the infected Web page, the code gets automatically executed and Mark can easily perform acts such as account hijacking, history theft, etc. Which of the following types of cross-site scripting attacks does Mark intend to perform?

    A. Non-persistent
    B. Persistent
    C. Document Object Model (DOMJ
    D. SAX

  • Question 196:

    Which of the following elements are essential elements of a privacy policy? Each correct answer represents a complete solution. Choose two.

    A. Opt-out provision
    B. Reliability
    C. Availability
    D. Notification

  • Question 197:

    Dipen is looking for a method to effectively get security policies read by staff and management, which of the following is the best solution?

    A. Printed policies
    B. Intranet Website
    C. Routine informational meetings
    D. Email blast

  • Question 198:

    Which of the following stages are involved in the successful implementation of a collaboration platform? Each correct answer represents a part of the solution. Choose two.

    A. Ongoing collaboration solution design
    B. Federated identity management
    C. Platform implementation
    D. Product and service integration

  • Question 199:

    What is the goal of a black-box penetration testing?

    A. To simulate a user to include customizable scripts, additional tools and configurable kernels in personalized distributions
    B. To simulate an external hacking or cyber warfare attack
    C. To simulate an attacker who has some knowledge of the organization and its infrastructure
    D. To simulate a malicious insider who has some knowledge and possibly basic credentials to the target system

  • Question 200:

    SCADA stands for supervisory control and data acquisition. Which of the following statements are true about SCADA? Each correct answer represents a complete solution. Choose all that apply.

    A. SCADA systems also records and logs all events into a file stored on a hard disk.
    B. SCADA systems include only software components.
    C. SCADA is a category of software application program for process control, the gathering of data in real time from remote locations in order to control equipment and conditions.
    D. SCADA is used in power plants as well as in oil and gas refining, telecommunications, transportation, and water and waste control.

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only CompTIA exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your CA1-001 exam preparations and CompTIA certification application, do not hesitate to visit our Vcedump.com to find your solutions here.