1. Home
  2. CompTIA
  3. SY0-501

CompTIA SY0-501 Online Practice Questions and Exam Preparation

SY0-501 Exam Details

  • Exam Code
    :SY0-501
  • Exam Name
    :CompTIA Security+
  • Certification
    :CompTIA Certifications
  • Vendor
    :CompTIA
  • Total Questions
    :1423 Q&As
  • Last Updated
    :Sep 04, 2023

CompTIA SY0-501 Online Questions & Answers

  • Question 1031:

    A software development company needs to share information between two remote servers, using encryption to protect it. A programmer suggests developing a new encryption protocol, arguing that using an unknown protocol with secure, existing cryptographic algorithm libraries will provide strong encryption without being susceptible to attacks on other known protocols. Which of the following summarizes the BEST response to the programmer's proposal?

    A. The newly developed protocol will only be as secure as the underlying cryptographic algorithms used.
    B. New protocols often introduce unexpected vulnerabilities, even when developed with otherwise secure and tested algorithm libraries.
    C. A programmer should have specialized training in protocol development before attempting to design a new encryption protocol.
    D. The obscurity value of unproven protocols against attacks often outweighs the potential for introducing new vulnerabilities.

  • Question 1032:

    A systems administrator needs to install the same X.509 certificate on multiple servers. Which of the following should the administrator use?

    A. Key escrow
    B. A self-signed certificate
    C. Certificate chaining
    D. An extended validation certificate

  • Question 1033:

    If two employees are encrypting traffic between them using a single encryption key, which of the following agorithms are they using?

    A. RSA
    B. 3DES
    C. DSA
    D. SHA-2

  • Question 1034:

    A coffee company has hired an IT consultant to set up a WiFi network that will provide Internet access to customers who visit the company's chain of cafes. The coffee company has provided no requirements other than that customers should be granted access after registering via a web form and accepting the terms of service. Which of the following is the MINIMUM acceptable configuration to meet this single requirement?

    A. Captive portal
    B. WPA with PSK
    C. Open WiFi
    D. WPS

  • Question 1035:

    A security administrator has been conducting an account permissions review that has identified several users who belong to functional groups and groups responsible for auditing the functional groups' actions. Several recent outages have not been able to be traced to any user. Which of the following should the security administrator recommend to preserve future audit log integrity?

    A. Enforcing stricter onboarding workflow policies
    B. Applying least privilege to user group membership
    C. Following standard naming conventions for audit group users
    D. Restricting audit group membership to service accounts

  • Question 1036:

    A company has users and printers in multiple geographic locations, and the printers are located in common areas of the offices. To preserve the confidentiality of PII, a security administrator needs to implement the appropriate controls. Which of the following would BEST meet the confidentiality requirements of the data?

    A. Enforcing location-based policy restrictions
    B. Adding location to the standard naming convention
    C. Implementing time-of-day restrictions based on location
    D. Conducting regular account maintenance at each location

  • Question 1037:

    An information system owner has supplied a new requirement to the development team that calls for increased non-repudiation within the application. After undergoing several audits, the owner determined that current levels of non-repudiation were insufficient. Which of the following capabilities would be MOST appropriate to consider implementing is response to the new requirement?

    A. Transitive trust
    B. Symmetric encryption
    C. Two-factor authentication
    D. Digital signatures
    E. One-time passwords

  • Question 1038:

    A manager makes an unannounced visit to the marketing department and performs a walk-through of the office. The manager observes unclaimed documents on printers. A closer look at these documents reveals employee names, addresses, ages, birth dates, marital/dependent statuses, and favorite ice cream flavors. The manager brings this to the attention of the marketing department head. The manager believes this information to be PII, but the marketing head does not agree. Having reached a stalemate, which of the following is the MOST appropriate action to take NEXT?

    A. Elevate to the Chief Executive Officer (CEO) for redress; change from the top down usually succeeds.
    B. Find the privacy officer in the organization and let the officer act as the arbiter.
    C. Notify employees whose names are on these files that their personal information is being compromised.
    D. To maintain a working relationship with marketing, quietly record the incident in the risk register.

  • Question 1039:

    A user of the wireless network is unable to gain access to the network. The symptoms are: 1.) Unable to connect to both internal and Internet resources 2.) The wireless icon shows connectivity but has no network access

    The wireless network is WPA2 Enterprise and users must be a member of the wireless security group to authenticate. Which of the following is the MOST likely cause of the connectivity issues?

    A. The wireless signal is not strong enough
    B. A remote DDoS attack against the RADIUS server is taking place
    C. The user's laptop only supports WPA and WEP
    D. The DHCP scope is full
    E. The dynamic encryption key did not update while the user was offline

  • Question 1040:

    A technician receives a device with the following anomalies: Frequent pop-up ads Show response-time switching between active programs Unresponsive peripherals The technician reviews the following log file entries: File Name Source MD5 Target MD5 Status antivirus.exe F794F21CD33E4F57890DDEA5CF267ED2 F794F21CD33E4F57890DDEA5CF267ED2 Automatic iexplore.exe 7FAAF21CD33E4F57890DDEA5CF29CCEA AA87F21CD33E4F57890DDEAEE2197333 Automatic service.exe 77FF390CD33E4F57890DDEA5CF28881F 77FF390CD33E4F57890DDEA5CF28881F Manual USB.exe E289F21CD33E4F57890DDEA5CF28EDC0 E289F21CD33E4F57890DDEA5CF28EDC0 Stopped Based on the above output, which of the following should be reviewed?

    A. The web application firewall
    B. The file integrity check
    C. The data execution prevention
    D. The removable media control

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only CompTIA exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your SY0-501 exam preparations and CompTIA certification application, do not hesitate to visit our Vcedump.com to find your solutions here.