1. Home
  2. CompTIA
  3. SY0-301

CompTIA SY0-301 Online Practice Questions and Exam Preparation

SY0-301 Exam Details

  • Exam Code
    :SY0-301
  • Exam Name
    :CompTIA Security+
  • Certification
    :CompTIA Certifications
  • Vendor
    :CompTIA
  • Total Questions
    :820 Q&As
  • Last Updated
    :Dec 12, 2021

CompTIA SY0-301 Online Questions & Answers

  • Question 641:

    In order to securely communicate using PGP, the sender of an email must do which of the following when sending an email to a recipient for the first time?

    A. Import the recipient's public key
    B. Import the recipient's private key
    C. Export the sender's private key
    D. Export the sender's public key

  • Question 642:

    A company's chief information officer (CIO) has analyzed the financial loss associated with the company's database breach. They calculated that one single breach could cost the company $1,000,000 at a minimum. Which of the following documents is the CIO MOST likely updating?

    A. Succession plan
    B. Continuity of operation plan
    C. Disaster recovery plan
    D. Business impact analysis

  • Question 643:

    Which of the following data security techniques will allow Matt, an IT security technician, to encrypt a system with speed as its primary consideration?

    A. Hard drive encryption
    B. Infrastructure as a service
    C. Software based encryption
    D. Data loss prevention

  • Question 644:

    Which of the following tests a number of security controls in the least invasive manner?

    A. Vulnerability scan
    B. Threat assessment
    C. Penetration test
    D. Ping sweep

  • Question 645:

    A third party application has the ability to maintain its own user accounts or it may use single sign-on. To use single sign-on, the application is requesting the following information: OU=Users, DC=Domain, DC=COM. This application is requesting which of the following authentication services?

    A. TACACS+
    B. RADIUS
    C. LDAP
    D. Kerberos

  • Question 646:

    A security administrator wants to deploy security controls to mitigate the threat of company employees' personal information being captured online. Which of the following would BEST serve this purpose?

    A. Anti-spyware
    B. Antivirus
    C. Host-based firewall
    D. Web content filter

  • Question 647:

    Which of the following devices is BEST suited for servers that need to store private keys?

    A. Hardware security module
    B. Hardened network firewall
    C. Solid state disk drive
    D. Hardened host firewall

  • Question 648:

    Which of the following is the MOST likely cause of users being unable to verify a single user's email signature and that user being unable to decrypt sent messages?

    A. Unmatched key pairs
    B. Corrupt key escrow
    C. Weak public key
    D. Weak private key

  • Question 649:

    Which of the following BEST describes the weakness in WEP encryption?

    A. The initialization vector of WEP uses a crack-able RC4 encryption algorithm. Once enough packets are captured an XOR operation can be performed and the asymmetric keys can be derived.
    B. The WEP key is stored in plain text and split in portions across 224 packets of random data. Once enough packets are sniffed the IV portion of the packets can be removed leaving the plain text key.
    C. The WEP key has a weak MD4 hashing algorithm used. A simple rainbow table can be used to generate key possibilities due to MD4 collisions.
    D. The WEP key is stored with a very small pool of random numbers to make the cipher text. As the random numbers are often reused it becomes easy to derive the remaining WEP key.

  • Question 650:

    An Information Systems Security Officer (ISSO) has been placed in charge of a classified peer- to-peer network that cannot connect to the Internet. The ISSO can update the antivirus definitions manually, but which of the following steps is MOST important?

    A. A full scan must be run on the network after the DAT file is installed.
    B. The signatures must have a hash value equal to what is displayed on the vendor site.
    C. The definition file must be updated within seven days.
    D. All users must be logged off of the network prior to the installation of the definition file.

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only CompTIA exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your SY0-301 exam preparations and CompTIA certification application, do not hesitate to visit our Vcedump.com to find your solutions here.