CISSP-ISSAP Exam Details

  • Exam Code
    :CISSP-ISSAP
  • Exam Name
    :ISSAP - Information Systems Security Architecture Professional (ISSAP)
  • Certification
    :ISC Certifications
  • Vendor
    :ISC
  • Total Questions
    :237 Q&As
  • Last Updated
    :Jul 14, 2026

ISC CISSP-ISSAP Online Questions & Answers

  • Question 21:

    In which of the following access control models can a user not grant permissions to other users to see a copy of an object marked as secret that he has received, unless they have the appropriate permissions?

    A. Discretionary Access Control (DAC)
    B. Role Based Access Control (RBAC)
    C. Mandatory Access Control (MAC)
    D. Access Control List (ACL)

  • Question 22:

    Adam works as a Network Administrator. He discovers that the wireless AP transmits 128 bytes of plaintext, and the station responds by encrypting the plaintext. It then transmits the resulting ciphertext using the same key and cipher that are used by WEP to encrypt subsequent network traffic. Which of the following types of authentication mechanism is used here?

    A. Pre-shared key authentication
    B. Open system authentication
    C. Shared key authentication
    D. Single key authentication

  • Question 23:

    A digital signature is a type of public key cryptography. Which of the following statements are true about digital signatures? Each correct answer represents a complete solution. Choose all that apply.

    A. In order to digitally sign an electronic record, a person must use his/her public key.
    B. In order to verify a digital signature, the signer's private key must be used.
    C. In order to digitally sign an electronic record, a person must use his/her private key.
    D. In order to verify a digital signature, the signer's public key must be used.

  • Question 24:

    Which of the following ports must be opened on the firewall for the VPN connection using Point-to- Point Tunneling Protocol (PPTP)?

    A. TCP port 110
    B. TCP port 443
    C. TCP port 5060
    D. TCP port 1723

  • Question 25:

    You have been assigned the task of selecting a hash algorithm. The algorithm will be specifically used to ensure the integrity of certain sensitive files. It must use a 128 bit hash value. Which of the following should you use?

    A. AES
    B. SHA
    C. MD5
    D. DES

  • Question 26:

    Which of the following does PEAP use to authenticate the user inside an encrypted tunnel? Each correct answer represents a complete solution. Choose two.

    A. GTC
    B. MS-CHAP v2
    C. AES
    D. RC4

  • Question 27:

    You are the Security Administrator for a consulting firm. One of your clients needs to encrypt traffic. However, he has specific requirements for the encryption algorithm. It must be a symmetric key block cipher. Which of the following should you choose for this client?

    A. PGP
    B. SSH
    C. DES
    D. RC4

  • Question 28:

    You are the Network Administrator for a large corporate network. You want to monitor all network traffic on your local network for suspicious activities and receive a notification when a possible attack is in process. Which of the following actions will you take for this?

    A. Install a network-based IDS
    B. Install a host-based IDS
    C. Install a DMZ firewall
    D. Enable verbose logging on the firewall

  • Question 29:

    In which of the following network topologies does the data travel around a loop in a single direction and pass through each device?

    A. Ring topology
    B. Tree topology
    C. Star topology
    D. Mesh topology

  • Question 30:

    You work as a Chief Security Officer for Tech Perfect Inc. You have configured IPSec and ISAKMP protocol in the company's network in order to establish a secure communication infrastructure. ccording to the Internet RFC 2408, which of the following services does the ISAKMP protocol offer to the network? Each correct answer represents a part of the solution. Choose all that apply.

    A. It relies upon a system of security associations.
    B. It provides key generation mechanisms.
    C. It authenticates communicating peers.
    D. It protects against threats, such as DoS attack, replay attack, etc.

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only ISC exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your CISSP-ISSAP exam preparations and ISC certification application, do not hesitate to visit our Vcedump.com to find your solutions here.