CompTIA JK0-022 Online Practice
Questions and Exam Preparation
JK0-022 Exam Details
Exam Code
:JK0-022
Exam Name
:CompTIA Security+ Certification
Certification
:CompTIA Security+
Vendor
:CompTIA
Total Questions
:1149 Q&As
Last Updated
:Feb 05, 2025
CompTIA JK0-022 Online Questions &
Answers
Question 181:
Which of the following algorithms has well documented collisions? (Select TWO).
A. AES B. MD5 C. SHA D. SHA-256 E. RSA
B. MD5 C. SHA B: MD5 biggest weakness is that it does not have strong collision resistance, and thus it is no longer recommended for use. C: SHA-1 (also known as SHA) is being retired from most government uses; the U.S. National Institute of Standards and Technology said, "Federal agencies should stop using SHA-1 for...applications that require collision resistance as soon as practical, and must use the SHA-2 family of hash functions for these applications after 2010", though that was later relaxed. Note: The hashing algorithm must have few or no collisions. This means that hashing two different inputs does not give the same output. Cryptographic hash functions are usually designed to be collision resistant. But many hash functions that were once thought to be collision resistant were later broken. MD5 and SHA-1 in particular both have published techniques more efficient than brute force for finding collisions. Incorrect Answers: A: AES has much fewer hash collisions compared to both MD5 and SHA. D: SHA-256 (also known as SHA-2) has much fewer hash collisions compared to both MD5 and SHA. E: RSA has much fewer hash collisions compared to both MD5 and SHA. References: Dulaney, Emmett and Chuck Eastton, CompTIA Security+ Study Guide, Sixth Edition, Sybex, Indianapolis, 2014, pp 250, 252, 255, 255-256
Question 182:
The system administrator has been notified that many users are having difficulty connecting to the company's wireless network. They take a new laptop and physically go to the access point and connect with no problems. Which of the following would be the MOST likely cause?
A. The certificate used to authenticate users has been compromised and revoked. B. Multiple war drivers in the parking lot have exhausted all available IPs from the pool to deny access. C. An attacker has gained access to the access point and has changed the encryption keys. D. An unauthorized access point has been configured to operate on the same channel.
D. An unauthorized access point has been configured to operate on the same channel. Wireless Access Points can be configured to use a channel. If you have multiple access points within range of each other, you should configure the access points to use different channels. Different channels use different frequencies. If you have two access points using the same channel, their wifi signals will interfere with each other. The question states that that many users are having difficulty connecting to the company's wireless network. This is probably due to the signal being weakened by interference from another access point using the same channel. When the administrator takes a new laptop and physically goes to the access point and connects with no problems, he is able to connect because he is near the access point and therefore has a strong signal. Incorrect Answers: A: If the certificate used to authenticate users has been compromised and revoked, no one would be able to authenticate. Users would still be able to initially connect to the access point to start the authentication process. Therefore, this answer is incorrect. B: The question asks for the most likely answer. Multiple war drivers in the parking lot using all the IPs is pretty unlikely. Interference from another access point is far more likely. Therefore, this answer is incorrect. C: If the encryption keys had been changed on the access point, no one would be able to connect to it. Therefore, this answer is incorrect.
Question 183:
Which of the following functions provides an output which cannot be reversed and converts data into a string of characters?
A. Hashing B. Stream ciphers C. Steganography D. Block ciphers
A. Hashing Hashing refers to the hash algorithms used in cryptography. It is used to store data, such as hash tables one of its characteristics is that it must be one-way it is not reversible. Incorrect Answers: B: A stream cipher is similar to a block cipher in that they are both symmetric methods of cryptography. The difference is that with a stream cipher the data is encrypted one bit, or byte, at a time whereas with a block cipher the algorithm works on chunks of data. C: Steganography is the process of hiding a message in a medium such as a digital image, audio fi le, or other file. In theory, doing this prevents analysts from detecting the real message. You could encode your message in another fi le or message and use that fi le to hide your message. D: A block cipher is a symmetric method in cryptography that encrypts data in chunks; very similar to stream ciphers. References: Dulaney, Emmett and Chuck Eastton, CompTIA Security+ Study Guide, Sixth Edition, Sybex, Indianapolis, 2014, p 248, 255, 291 http://en.wikipedia.org/wiki/Hash_function http://www.webopedia.com/TERM/H/hashing.html
Question 184:
Which of the following risks could IT management be mitigating by removing an all-in-one device?
A. Continuity of operations B. Input validation C. Single point of failure D. Single sign on
C. Single point of failure The major disadvantage of combining everything into one, although you do this to save costs, is to include a potential single point of failure and the reliance/ dependence on a single vendor. Incorrect Answers: A: Continuity of operation plan refers to policies, processes and methods that an organization has to follow to minimize the impact of failure of the key components needed for operations. B: Input validation refers to secure coding and removing an all-in-one device is not mitigating an input validation problem. Rather you are mitigating a single point of failure problem. D: Single sign-on is an authentication issue. References: Dulaney, Emmett and Chuck Eastton, CompTIA Security+ Study Guide, Sixth Edition, Sybex, Indianapolis, 2014, pp 30, 136, 432
Question 185:
Which of the following is a control that allows a mobile application to access and manipulate information which should only be available by another application on the same mobile device (e.g. a music application posting the name of the current song playing on the device on a social media site)?
A. Co-hosted application B. Transitive trust C. Mutually exclusive access D. Dual authentication
B. Transitive trust
Question 186:
Which of the following protocols allows for secure transfer of files? (Select TWO).
A. ICMP B. SNMP C. SFTP D. SCP E. TFTP
C. SFTP D. SCP Standard FTP is a protocol often used to move files between one system and another either over the Internet or within private networks. SFTP is a secured alternative to standard FTP. Secure Copy Protocol (SCP) is a secure file-transfer facility based on SSH and Remote Copy Protocol (RCP). Incorrect Answers: A: ICMP is a protocol that is commonly used by tools such as ping, traceroute, and pathping. B: You can use SNMP to interact with various network devices to obtain status information, performance data, statistics, and configuration details. E: Trivial File Transfer Protocol (TFTP) is a simple fi le-exchange protocol that doesn't require authentication. References: Stewart, James Michael, CompTIA Security+ Review Guide, Sybex, Indianapolis, 2014, pp 42, 49, 50.
Question 187:
Joe analyzed the following log and determined the security team should implement which of the following as a mitigation method against further attempts?
Host 192.168.1.123
[00:
00: 01]Successful Login: 015 192.168.1.123 : local
A. Reporting B. IDS C. Monitor system logs D. Hardening
D. Hardening We can see a number of unsuccessful login attempts using a Remote Desktop Connection (using the RDP protocol) from a computer with the IP address 192.168.1.124. Someone successfully logged in locally. This is probably an authorized login (for example, Joe logging in). Hardening is the process of securing a system. We can harden (secure) the system by either disallowing remote desktop connections altogether or by restricting which IPs are allowed to initiate remote desktop connections. Incorrect Answers: A: Reporting is not used to prevent unauthorized login attempts. Therefore, this answer is incorrect. B: An intrusion detection system (IDS) is a device or software application that monitors network or system activities for malicious activities or policy violations and produces reports to a management station. An IDS could detect the attempted logins but it would not prevent them. "Hardening" is a basic security principle which should be applied to every system. Therefore, this answer is incorrect. C: Monitoring system logs will keep you informed about any potential problems with the computer system. However, it will not prevent unauthorized login attempts. Therefore, this answer is incorrect.
Question 188:
A datacenter requires that staff be able to identify whether or not items have been removed from the facility. Which of the following controls will allow the organization to provide automated notification of item removal?
A. CCTV B. Environmental monitoring C. RFID D. EMI shielding
C. RFID RFID is radio frequency identification that works with readers that work with 13.56 MHz smart cards and 125 kHz proximity cards and can open turnstiles, gates, and any other physical security safeguards once the signal is read. Fitting out the equipment with RFID will allow you to provide automated notification of item removal in the event of any of the equipped items is taken off the premises. Incorrect Answers: A: CCTV will record events, but will not automatically notify you of item removal. B: Environmental monitoring concerns events such as water, flood, humidity, fire, etc. types of threats and not theft as in the case of item removal. D: EMI shielding refers to the process of preventing electronic emissions from your computer systems from being used to gather intelligence and preventing outside electronic emissions from disrupting you information-processing abilities. It is not designed to automatically notify you of events when items are removed. References: Dulaney, Emmett and Chuck Eastton, CompTIA Security+ Study Guide, Sixth Edition, Sybex, Indianapolis, 2014, p 368 http://en.wikipedia.org/wiki/Radio-frequency_identification
Question 189:
A system administrator is notified by a staff member that their laptop has been lost. The laptop contains the user's digital certificate. Which of the following will help resolve the issue? (Select TWO).
A. Revoke the digital certificate B. Mark the key as private and import it C. Restore the certificate using a CRL D. Issue a new digital certificate E. Restore the certificate using a recovery agent
A. Revoke the digital certificate D. Issue a new digital certificate The user's certificate must be revoked to ensure that the stolen computer cannot access resources the user has had access to. To grant the user access to the resources he must be issued a new certificate. Incorrect Answers: B: Within a PKI there is no meaningful procedure that marks and import a key. C: The certificate needs to be revoked, not to be restored. CRLs are used to store revoked certificates and signatures. CRLs are not used to restore certificates. E: Restore the certificate using a recovery agent References: Dulaney, Emmett and Chuck Eastton, CompTIA Security+ Study Guide, Sixth Edition, Sybex, Indianapolis, 2014, pp 262, 279-285, 285
Question 190:
A security administrator is reviewing the below output from a password auditing tool:
P@ss. @pW1. S3cU4
Which of the following additional policies should be implemented based on the tool's output?
A. Password age B. Password history C. Password length D. Password complexity
C. Password length The output shows that all the passwords are either 4 or 5 characters long. This is way too short, 8 characters are shown to be the minimum for password length. Incorrect Answers: A: The output does not show how long the passwords have been in use. B: The output does not show the password history. D: The output shows that the password is indeed making use of complexity when it comes to the types of characters used. References: Dulaney, Emmett and Chuck Eastton, CompTIA Security+ Study Guide, Sixth Edition, Sybex, Indianapolis, 2014, pp 139-140
Nowadays, the certification exams become more and more important and required by more and more
enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare
for the exam in a short time with less efforts? How to get a ideal result and how to find the
most reliable resources? Here on Vcedump.com, you will find all the answers.
Vcedump.com provide not only CompTIA exam questions,
answers and explanations but also complete assistance on your exam preparation and certification
application. If you are confused on your JK0-022 exam preparations
and CompTIA certification application, do not hesitate to visit our
Vcedump.com to find your solutions here.