SY0-501 Exam Details

  • Exam Code
    :SY0-501
  • Exam Name
    :CompTIA Security+
  • Certification
    :CompTIA Certifications
  • Vendor
    :CompTIA
  • Total Questions
    :1423 Q&As
  • Last Updated
    :Sep 04, 2023

CompTIA SY0-501 Online Questions & Answers

  • Question 1:

    A network administrator is creating a new network for an office. For security purposes, each department should have its resources isolated from every other department but be able to communicate back to central servers. Which of the following architecture concepts would BEST accomplish this?

    A. Air gapped network
    B. Load balanced network
    C. Network address translation
    D. Network segmentation

  • Question 2:

    A company has two wireless networks utilizing captive portals. Some employees report getting a trust error in their browsers when connecting to one of the networks. Both captive portals are using the same server certificate for authentication,

    but the analyst notices the following differences between the two certificate details:

    Certificate 1

    Certificate Path:

    Geotrust Global CA

    *company.com

    Certificate 2

    Certificate Path:

    *company.com

    Which of the following would resolve the problem?

    A. Use a wildcard certificate.
    B. Use certificate chaining.
    C. Use a trust model.
    D. Use an extended validation certificate.

  • Question 3:

    Ann a security analyst from a large organization has been instructed to use another more effective scanning tool After installing the tool on her desktop she started a full vulnerability scan After running the scan for eight hours. Ann finds that

    there were no vulnerabilities identified.

    Which of the following is the MOST likely cause of not receiving any vulnerabilities on the network?

    A. The organization has a zero tolerance policy against not applying cybersecurity best practices
    B. The organization had a proactive approach to patch management principles and practices
    C. The security analyst credentials did not allow full administrative rights for the scanning tool
    D. The security analyst just recently applied operating system level patches

  • Question 4:

    A network administrator is attempting to troubleshoot an issue regarding certificates on a secure website. During the troubleshooting process, the network administrator notices that the web gateway proxy on the local network has signed all of the certificates on the local machine. Which of the following describes the type of attack the proxy has been legitimately programmed to perform?

    A. Transitive access
    B. Spoofing
    C. Man-in-the-middle
    D. Replay

  • Question 5:

    Which of the following BEST describes a security exploit for which a vendor patch is not readily available?

    A. Integer overflow
    B. Zero-day
    C. End of life
    D. Race condition

  • Question 6:

    Which of the following is an example of the second A in the AAA model?

    A. The encryption protocol successfully completes the handshake and establishes a connection
    B. The one-time password is keyed in, and the login system grants access
    C. The event log records a successful login with a type code that indicates an interactive login
    D. A domain controller confirms membership in the appropriate group

  • Question 7:

    While testing a new application, a developer discovers that the inclusion of an apostrophe in a username causes the application to crash. Which of the following secure coding techniques would be MOST useful to avoid this problem?

    A. Input validation
    B. Code signing
    C. Obfuscation
    D. Encryption

  • Question 8:

    A security analyst is working on a project that requires the implementation of a stream cipher. Which of the following should the analyst use?

    A. Hash function
    B. Elliptic curve
    C. Symmetric algorithm
    D. Public key cryptography

  • Question 9:

    When performing data acquisition on a workstation, which of the following should be captured based on memory volatility? (Select two.)

    A. USB-attached hard disk
    B. Swap/pagefile
    C. Mounted network storage
    D. ROM
    E. RAM

  • Question 10:

    A systems engineer is setting up a RADIUS server to support a wireless network that uses certificate authentication. Which of the following protocols must be supported by both the RADIUS server and the WAPs?

    A. CCMP
    B. TKIP
    C. WPS
    D. EAP

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only CompTIA exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your SY0-501 exam preparations and CompTIA certification application, do not hesitate to visit our Vcedump.com to find your solutions here.