JK0-018 Exam Details

  • Exam Code
    :JK0-018
  • Exam Name
    :CompTIA Security+ E2C (2011 Edition)
  • Certification
    :CompTIA Security+
  • Vendor
    :CompTIA
  • Total Questions
    :820 Q&As
  • Last Updated
    :Dec 09, 2021

CompTIA JK0-018 Online Questions & Answers

  • Question 31:

    The recovery agent is used to recover the:

    A. Root certificate
    B. Key in escrow
    C. Public key
    D. Private key

  • Question 32:

    Joe, a user, in a coffee shop is checking his email over a wireless network. An attacker records the temporary credentials being passed to Joe's browser. The attacker later uses the credentials to impersonate Joe and creates SPAM messages. Which of the following attacks allows for this impersonation?

    A. XML injection
    B. Directory traversal
    C. Header manipulation
    D. Session hijacking

  • Question 33:

    Which of the following will help prevent smurf attacks?

    A. Allowing necessary UDP packets in and out of the network
    B. Disabling directed broadcast on border routers
    C. Disabling unused services on the gateway firewall
    D. Flash the BIOS with the latest firmware

  • Question 34:

    Privilege creep among long-term employees can be mitigated by which of the following procedures?

    A. User permission reviews
    B. Mandatory vacations
    C. Separation of duties
    D. Job function rotation

  • Question 35:

    Which of the following provides dedicated hardware-based cryptographic functions to an operating system and its applications running on laptops and desktops?

    A. TPM
    B. HSM
    C. CPU
    D. FPU

  • Question 36:

    After a recent breach, the security administrator performs a wireless survey of the corporate network. The security administrator notices a problem with the following output: MACSSIDENCRYPTIONPOWERBEACONS 00:10:A1:36:12:CCMYCORPWPA2 CCMP601202 00:10:A1:49:FC:37MYCORPWPA2 CCMP709102 FB:90:11:42:FA:99MYCORPWPA2 CCMP403031 00:10:A1:AA:BB:CCMYCORPWPA2 CCMP552021 00:10:A1:FA:B1:07MYCORPWPA2 CCMP306044 Given that the corporate wireless network has been standardized, which of the following attacks is underway?

    A. Evil twin
    B. IV attack
    C. Rogue AP
    D. DDoS

  • Question 37:

    A recent audit has revealed weaknesses in the process of deploying new servers and network devices. Which of the following practices could be used to increase the security posture during deployment? (Select TWO).

    A. Deploy a honeypot
    B. Disable unnecessary services
    C. Change default passwords
    D. Implement an application firewall
    E. Penetration testing

  • Question 38:

    An administrator notices an unusual spike in network traffic from many sources. The administrator suspects that:

    A. it is being caused by the presence of a rogue access point.
    B. it is the beginning of a DDoS attack.
    C. the IDS has been compromised.
    D. the internal DNS tables have been poisoned.

  • Question 39:

    Which of the following is used by the recipient of a digitally signed email to verify the identity of the sender?

    A. Recipient's private key
    B. Sender's public key
    C. Recipient's public key
    D. Sender's private key

  • Question 40:

    An administrator values transport security strength above network speed when implementing an SSL VPN. Which of the following encryption ciphers would BEST meet their needs?

    A. SHA256
    B. RC4
    C. 3DES
    D. AES128

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only CompTIA exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your JK0-018 exam preparations and CompTIA certification application, do not hesitate to visit our Vcedump.com to find your solutions here.