1. Home
  2. CompTIA
  3. SY0-301

CompTIA SY0-301 Online Practice Questions and Exam Preparation

SY0-301 Exam Details

  • Exam Code
    :SY0-301
  • Exam Name
    :CompTIA Security+
  • Certification
    :CompTIA Certifications
  • Vendor
    :CompTIA
  • Total Questions
    :820 Q&As
  • Last Updated
    :Dec 12, 2021

CompTIA SY0-301 Online Questions & Answers

  • Question 431:

    Which of the following should a security technician implement to identify untrusted certificates?

    A. CA
    B. PKI
    C. CRL
    D. Recovery agent

  • Question 432:

    Use of a smart card to authenticate remote servers remains MOST susceptible to which of the following attacks?

    A. Malicious code on the local system
    B. Shoulder surfing
    C. Brute force certificate cracking
    D. Distributed dictionary attacks

  • Question 433:

    Which of the following is a requirement when implementing PKI if data loss is unacceptable?

    A. Web of trust
    B. Non-repudiation
    C. Key escrow
    D. Certificate revocation list

  • Question 434:

    Which of the following can be implemented if a security administrator wants only certain devices connecting to the wireless network?

    A. Disable SSID broadcast
    B. Install a RADIUS server
    C. Enable MAC filtering
    D. Lowering power levels on the AP

  • Question 435:

    Ann works at a small company and she is concerned that there is no oversight in the finance department; specifically, that Joe writes, signs and distributes paychecks, as well as other expenditures. Which of the following controls can she implement to address this concern?

    A. Mandatory vacations
    B. Time of day restrictions
    C. Least privilege
    D. Separation of duties

  • Question 436:

    Identifying a list of all approved software on a system is a step in which of the following practices?

    A. Passively testing security controls
    B. Application hardening
    C. Host software baselining
    D. Client-side targeting

  • Question 437:

    An online store wants to protect user credentials and credit card information so that customers can store their credit card information and use their card for multiple separate transactions. Which of the following database designs provides the BEST security for the online store?

    A. Use encryption for the credential fields and hash the credit card field
    B. Encrypt the username and hash the password
    C. Hash the credential fields and use encryption for the credit card field
    D. Hash both the credential fields and the credit card field

  • Question 438:

    A recent audit has revealed weaknesses in the process of deploying new servers and network devices. Which of the following practices could be used to increase the security posture during deployment? (Select TWO).

    A. Deploy a honeypot
    B. Disable unnecessary services
    C. Change default passwords
    D. Implement an application firewall
    E. Penetration testing

  • Question 439:

    A perimeter survey finds that the wireless network within a facility is easily reachable outside of the physical perimeter. Which of the following should be adjusted to mitigate this risk?

    A. CCMP
    B. MAC filter
    C. SSID broadcast
    D. Power level controls

  • Question 440:

    Which of the following protocols uses an asymmetric key to open a session and then establishes a symmetric key for the remainder of the session?

    A. SFTP
    B. HTTPS
    C. TFTP
    D. TLS

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only CompTIA exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your SY0-301 exam preparations and CompTIA certification application, do not hesitate to visit our Vcedump.com to find your solutions here.