單項選擇題Which statement is true about a certificate authority?()

A.An entity responsible for registering the private key encryption used in a PKI
B.An agency responsible for granting and revoking public-private key pairs
C.A trusted third party responsible for signing the public keys of entities in a PKIbased system
D.A trusted third party responsible for signing the private keys of entities in a PKIbased system


您可能感興趣的試卷

你可能感興趣的試題

1.多項選擇題What are four methods used by hackers? ()

A.footprint analysis attack
B.privilege escalation attack
C.buffer Unicode attack
D.social engineering attack
E.front door attacks
F.Trojan horse attack

2.單項選擇題Which result is of securing the Cisco IOS image by use of the Cisco IOS image resilience feature?()

A.The Cisco IOS image file will not be visible in the output from the show flash command.
B.The show version command will not show the Cisco IOS image file location.
C.When the router boots up, the Cisco IOS image will be loaded from a secured FTP location.
D.The running Cisco IOS image will be encrypted and then automatically backed up to a TFTP server.

3.單項選擇題You are a network technician at Certpaper.com. Which description is correct when you have generated RSA keys on your Cisco router to prepare for secure device management?()

A.You must then specify the general-purpose key size used for authentication with the crypto key generaters a general-keys modulus command.
B.You must then zeroize the keys to reset secure shell before configuring other parameters.
C.All vty ports are automatically enabled for SSH to provide secure management.
D.The SSH protocol is automatically enabled.

4.單項選擇題What should be enabled before any user views can be created during role-based CLI configuration ?()

A.aaa new-model command
B.secret password for the root user
C.usernames and passwords
D.multiple privilege levels

5.多項選擇題Which three options are network evaluation techniques? ()

A.Performing end-user training on the use of antispyware software
B.Performing virus scans
C.Scanning a network for active IP addresses and open ports on those IP addresses
D.Using password-cracking utilities

7.單項選擇題Which is the main difference between host-based and network-based intrusion prevention?()

A.Host-based IPS can work in promiscuous mode or inline mode.
B.Network-based IPS can provide protection to desktops and servers without the need of installing specialized software on the end hosts and servers.
C.Network-based IPS is better suited for inspection of SSL and TLS encrypted data flows.
D.Host-based IPS deployment requires less planning than network-based IPS.

最新試題

What will be disabled as a result of the no service password-recovery command?()

題型:單項選擇題

What is a static packet-filtering firewall used for ?()

題型:單項選擇題

When configuring SSH, which is the Cisco minimum recommended modulus value?()

題型:單項選擇題

Which name is of the e-mail traffic monitoring service that underlies that architecture of IronPort?()

題型:單項選擇題

On the basis of the show policy-map type inspect zone-pair session command output provided in theexhibit.What can be determined about this Cisco IOS zone based firewall policy?()

題型:單項選擇題

Which method is of gaining access to a system that bypasses normal security measures?()

題型:單項選擇題

Refer to the exhibit. Based on the VPN connection shown, which statement is true?()

題型:單項選擇題

When using the Cisco SDM Quick Setup Siteto-Site VPN wizard, which three parameters do you configure?()

題型:多項選擇題

Refer to the exhibit. You are the network security administrator responsible for router security.Your networkuses internal IP addressing according to RFC 1918 specifications.From the default rules shown,whichaccess control list would prevent IP address spoofing of these internal networks?()

題型:單項選擇題

Which type of MAC address is dynamically learned by a switch port and then added to the switch’s runningconfiguration?()

題型:單項選擇題