CompTIA SY0-701 Online Practice Questions and Exam Preparation

CompTIA SY0-701 Online Questions & Answers

• Question 371:

  An organization wants to limit potential impact to its log-in database in the event of a breach.

  Which of the following options is the security team most likely to recommend?

  A. Tokenization
  B. Hashing
  C. Obfuscation
  D. Segmentation
  B. Hashing

• Question 372:

  Employees sign an agreement that restricts specific activities when leaving the company. Violating the agreement can result in legal consequences.

  Which of the following agreements does this best describe?

  A. SLA
  B. BPA
  C. NDA
  D. MOA
  C. NDA

• Question 373:

  Which of the following methods to secure data is most often used to protect data in transit?

  A. Encryption
  B. Obfuscation
  C. Permission restrictions
  D. Hashing
  A. Encryption

• Question 374:

  The Chief Information O cer (CIO) asked a vendor to provide documentation detailing the specific objectives within the compliance framework that the vendor's services meet. The vendor provided a report and a signed letter stating that the services meet 17 of the 21 objectives.

  Which of the following did the vendor provide to the CIO?

  A. Penetration test results
  B. Self-assessment findings
  C. Attestation of compliance
  D. Third-party audit report
  C. Attestation of compliance

• Question 375:

  A software developer wishes to implement an application security technique that will provide assurance of the application's integrity.

  Which of the following techniques will achieve this?

  A. Secure cookies
  B. Input validation
  C. Static analysis
  D. Code signing
  D. Code signing

• Question 376:

  A malicious insider from the marketing team alters records and transfers company funds to a personal account.

  Which of the following methods would be the best way to secure company records in the future?

  A. Permission restrictions
  B. Hashing
  C. Input validation
  D. Access control list
  A. Permission restrictions

  ---

  Explanation

  Implementing strict permission restrictions ensures that users can only access the data and functions necessary for their specific roles. By limiting access rights, the company can reduce the risk of unauthorized modifications by restricting sensitive financial records to only those who absolutely need access. Additionally, permission restrictions allow for better monitoring and control over sensitive data, making it harder for malicious insiders to perform unauthorized actions.

• Question 377:

  Which of the following describes the process of concealing code or text inside a graphical image?

  A. Symmetric encryption
  B. Hashing
  C. Data masking
  D. Steganography
  D. Steganography

  ---

  Explanation

  Steganography is the process of hiding information within another medium, such as an image, audio, video, or text file. The hidden information is not visible or noticeable to the casual observer, and can only be extracted by using a specific technique or key. Steganography can be used for various purposes, such as concealing secret messages, watermarking, or evading detection by antivirus software

  References:

  1: CompTIA Security+ Study Guide: Exam SY0-701, 9th Edition, Chapter

  5: Cryptography and PKI, page 233

  2: CompTIA Security+ Certification Kit: Exam SY0-701, 7th Edition, Chapter

  5: Cryptography and PKI, page 235

• Question 378:

  A systems administrator successfully configures VPN access to a cloud environment.

  Which of the following capabilities should the administrator use to best facilitate remote administration?

  A. A jump host in the shared services security zone
  B. An SSH server within the corporate LAN
  C. A reverse proxy on the firewall
  D. An MDM solution with conditional access
  A. A jump host in the shared services security zone

  ---

  Explanation

  A jump host in a shared services security zone is specifically designed to provide secure access to remote environments, such as a cloud environment, while ensuring that access is monitored and controlled. This setup facilitates remote administration by providing a dedicated entry point, allowing administrators to access sensitive network areas through a secure, segmented pathway. This setup minimizes direct exposure to the cloud environment and enhances security.

• Question 379:

  A company wants to verify that the software the company is deploying came from the vendor the company purchased the software from.

  Which of the following is the best way for the company to confirm this information?

  A. Validate the code signature.
  B. Execute the code in a sandbox.
  C. Search the executable for ASCII strings.
  D. Generate a hash of the files.
  A. Validate the code signature.

  ---

  Explanation

  Validating the code signature is the best way to verify software authenticity, as it ensures that the software has not been tampered with and that it comes from a verified source. Code signatures are digital signatures applied by the software vendor, and validating them confirms the software's integrity and origin.

  References:

  CompTIA Security+ SY0-701 course content and official CompTIA study resources.

• Question 380:

  An organization wants to donate its aging network hardware.

  Which of the following should the organization perform to prevent any network details from leaking?

  A. Destruction
  B. Sanitization
  C. Certification
  D. Data retention
  B. Sanitization