ISC New 2025 CISSP Sample Questions Reliable CISSP Test Engine [Q371-Q391]

ISC New 2025 CISSP Sample Questions Reliable CISSP Test Engine

Feel ISC CISSP Dumps PDF Will likely be The best Option

The duration, language, and format of the ISC CISSP Certification Exam

Details related to Format, Duration, and language of the ISC CISSP Certification Exam are as follows:

ISC CISSP exam administration language:

The language of the ISC CISSP exam is English.

The CISSP certification is highly valued by employers and is often a requirement for many information security positions. Certified Information Systems Security Professional (CISSP) certification demonstrates that an individual has the knowledge and skills needed to design, implement, and manage effective security programs in their organization. Employers often prefer candidates who hold the CISSP certification as it indicates that they have a deep understanding of information security concepts and best practices.

 

NEW QUESTION # 371
Which of the following statements pertaining to packet filtering is incorrect?

• A. It keeps track of the state of a connection
• B. It operates at the network layer
• C. It is based on ACLs
• D. It is not application dependant

Answer: A

NEW QUESTION # 372
Which of the following four iterative steps are conducted on third-party vendors in an on-going basis?

• A. Frame, Assess, Remediate, Monitor
• B. Investigate, Evaluate, Respond, Monitor
• C. Frame, Assess, Respond, Monitor
• D. Investigate, Assess, Remediate, Monitor

Answer: C

Explanation:
Third-party vendors are external entities that provide products or services to an organization, such as suppliers, contractors, consultants, or partners. Third-party vendors can pose various risks to the organization, such as security breaches, compliance violations, service disruptions, or reputational damage. Therefore, the organization should conduct a third-party risk management (TPRM) process to identify, assess, mitigate, and monitor the risks associated with third-party vendors. The TPRM process consists of four iterative steps that are conducted on third-party vendors in an on-going basis. The steps are:
Frame: This step involves defining the scope, objectives, and governance of the TPRM process, as well as establishing the criteria and thresholds for risk assessment and acceptance.
Assess: This step involves collecting and analyzing information about the third-party vendors, such as their security policies, controls, practices, certifications, and performance, to evaluate their risk profile and compliance status.
Respond: This step involves developing and implementing strategies and actions to address the risks identified in the assessment step, such as negotiating contracts, enforcing service level agreements, applying controls, conducting audits, or terminating relationships.
Monitor: This step involves tracking and reviewing the performance and risk posture of the third-party vendors on a regular basis, as well as updating the TPRM process as needed to reflect changes in the business environment, regulatory requirements, or risk appetite.
Therefore, the correct answer is B. The other options are incorrect because they do not include all the steps of the TPRM process or use different terms that are not consistent with the TPRM framework. References:
Official (ISC)2 CISSP CBK Reference, Fifth Edition, Chapter 1: Security and Risk Management, Section:
Third-Party Risk Management; CISSP All-in-One Exam Guide, Eighth Edition, Chapter 1: Security Governance Through Principles and Policies, Section: Third-Party Governance.

NEW QUESTION # 373
What is the process called when impact values are assigned to the security objectives for information types?

• A. Qualitative analysis
• B. System security categorization
• C. Quantitative analysis
• D. Remediation

Answer: B

NEW QUESTION # 374
During which phase of an IT system life cycle are security requirements developed?

• A. Implementation
• B. Operation
• C. Functional design analysis and Planning
• D. Initiation

Answer: C

Explanation:
The software development life cycle (SDLC) (sometimes referred to as the
System Development Life Cycle) is the process of creating or altering software systems, and the models and methodologies that people use to develop these systems.
The NIST SP 800-64 revision 2 has within the description section of para 3.2.1:
This section addresses security considerations unique to the second SDLC phase. Key security activities for this phase include:
* Conduct the risk assessment and use the results to supplement the baseline security controls;
* Analyze security requirements;
* Perform functional and security testing;
* Prepare initial documents for system certification and accreditation; and
* Design security architecture.
Reviewing this publication you may want to pick development/acquisition. Although initiation would be a decent choice, it is correct to say during this phase you would only brainstorm the idea of security requirements. Once you start to develop and acquire hardware/software components then you would also develop the security controls for these. The Shon Harris reference below is correct as well.
Shon Harris' Book (All-in-One CISSP Certification Exam Guide) divides the SDLC differently:
- Project initiation
- Functional design analysis and planning
- System design specifications
- Software development
- Installation
- Maintenance support
- Revision and replacement
According to the author (Shon Harris), security requirements should be developed during the functional design analysis and planning phase.
SDLC POSITIONING FROM NIST 800-64
SDLC Positioning in the enterprise
Information system security processes and activities provide valuable input into managing
IT systems and their development, enabling risk identification, planning and mitigation. A risk management approach involves continually balancing the protection of agency information and assets with the cost of security controls and mitigation strategies throughout the complete information system development life cycle (see Figure 2-1 above).
The most effective way to implement risk management is to identify critical assets and operations, as well as systemic vulnerabilities across the agency. Risks are shared and not bound by organization, revenue source, or topologies. Identification and verification of critical assets and operations and their interconnections can be achieved through the system security planning process, as well as through the compilation of information from the Capital Planning and Investment Control (CPIC) and Enterprise Architecture (EA) processes to establish insight into the agency's vital business operations, their supporting assets, and existing interdependencies and relationships.
With critical assets and operations identified, the organization can and should perform a business impact analysis (BIA). The purpose of the BIA is to relate systems and assets with the critical services they provide and assess the consequences of their disruption. By identifying these systems, an agency can manage security effectively by establishing priorities. This positions the security office to facilitate the IT program's cost-effective performance as well as articulate its business impact and value to the agency.
SDLC OVERVIEW FROM NIST 800-64
SDLC Overview from NIST 800-64 Revision 2
NIST 800-64 Revision 2 is one publication within the NISTstandards that I would recommend you look at for more details about the SDLC. It describe in great details what activities would take place and they have a nice diagram for each of the phases of the
SDLC. You will find a copy at:
http://csrc.nist.gov/publications/nistpubs/800-64-Rev2/SP800-64-Revision2.pdf
DISCUSSION:
Different sources present slightly different info as far as the phases names are concerned.
People sometimes gets confused with some of the NIST standards. For example NIST
800-64 Security Considerations in the Information System Development Life Cycle has slightly different names, the activities mostly remains the same.
NIST clearly specifies that Security requirements would be considered throughout ALL of the phases. The keyword here is considered, if a question is about which phase they would be developed than Functional Design Analysis would be the correct choice.
Within the NIST standard they use different phase, howeverr under the second phase you will see that they talk specifically about Security Functional requirements analysis which confirms it is not at the initiation stage so it become easier to come out with the answer to this question. Here is what is stated:
The security functional requirements analysis considers the system security environment, including the enterprise information security policy and the enterprise security architecture.
The analysis should address all requirements for confidentiality, integrity, and availability of information, and should include a review of all legal, functional, and other security requirements contained in applicable laws, regulations, and guidance.
At the initiation step you would NOT have enough detailed yet to produce the Security
Requirements. You are mostly brainstorming on all of the issues listed but you do not develop them all at that stage.
By considering security early in the information system development life cycle (SDLC), you may be able to avoid higher costs later on and develop a more secure system from the start.
NIST says:
NIST`s Information Technology Laboratory recently issued Special Publication (SP) 800-
64, Security Considerations in the Information System Development Life Cycle, by Tim
Grance, Joan Hash, and Marc Stevens, to help organizations include security requirements in their planning for every phase of the system life cycle, and to select, acquire, and use appropriate and cost-effective security controls.
I must admit this is all very tricky but reading skills and paying attention to KEY WORDS is a must for this exam.
References:
HARRIS, Shon, All-In-One CISSP Certification Exam Guide, McGraw-Hill/Osborne, Fifth
Edition, Page 956
and
NIST S-64 Revision 2 at http://csrc.nist.gov/publications/nistpubs/800-64-Rev2/SP800-64-
Revision2.pdf
and
http://www.mks.com/resources/resource-pages/software-development-life-cycle-sdlc- system-development

NEW QUESTION # 375
Which of the following fire extinguishing systems incorporating a detection system is currently the most recommended water system for a computer room?

• A. Deluge
• B. Dry pipe
• C. Preaction
• D. Wet pipe

Answer: C

Explanation:
The preaction system combines both the dry and wet pipe systems, by first releasing the water into the pipes when heat is detected (dry pipe), then releasing the water flow when the link in the nozzle melts (wet pipe).
This allows manual intervention before a full discharge of water on the equipment occurs.
This is currently the most recommended water system for a computer room.
According to the ISC2 Official Study Guide:
All buildings should be equipped with an effective fire suppression system, providing the building with around the clock protection. Traditionally, fire suppression systems employed arrays of water sprinklers that would douse a fire and surrounding areas.
Sprinkler systems are classified into four different groups: wet, dry, preaction, and deluge.
Wet systems have a constant supply of water in them at all times; these sprinklers once activated will not shut off until the water source is shut off.
Dry systems do not have water in them. The valve will not release until the electric valve is stimulated by excess heat.
Pre-action systems incorporate a detection system, which can eliminate concerns of water damage due to false activations. Water is held back until detectors in the area are activated.
Deluge systems operate in the same function as the pre-action system except all sprinkler heads are in the open position. Water may be a sound solution for large physical areas such as warehouses, but it is entirely inappropriate for computer equipment. A water spray can irreparably damage hardware more quickly than encroaching smoke or heat. Gas suppression systems operate to starve the fire of oxygen. In the past, Halon was the choice for gas suppression systems; however, Halon leaves residue, depletes the ozone layer, and can injure nearby personnel.
Shon Harris in her latest study guide says:
Four main types of water sprinkler systems are available: wet pipe, dry pipe, preaction, and deluge.
* Wet pipe Wet pipe systems always contain water in the pipes and are usually discharged by temperature control-level sensors. One disadvantage of wet pipe systems is that the water in the pipes may freeze in colder climates. Also, if there is a nozzle or pipe break, it can cause extensive water damage. These types of systems are also called closed head systems.
* Dry pipe In dry pipe systems, the water is not actually held in the pipes. The water is contained in a "holding tank" until it is released. The pipes hold pressurized air, which is reduced when a fire or smoke alarm is activated, allowing the water valve to be opened by the water pressure. Water is not allowed into the pipes that feed the sprinklers until an actual fire is detected. First, a heat or smoke sensor is activated; then, the water fills the pipes leading to the sprinkler heads, the fire alarm sounds, the electric power supply is disconnected, and finally water is allowed to flow from the sprinklers. These pipes are best used in colder climates because the pipes will not freeze.
* Preaction Preaction systems are similar to dry pipe systems in that the water is not held in the pipes, but is released when the pressurized air within the pipes is reduced. Once this happens, the pipes are filled with water, but it is not released right away. A thermal-fusible link on the sprinkler head has to melt before the water is released. The purpose of combining these two techniques is to give people more time to respond to false alarms or to small fires that can be handled by other means. Putting out a small fire with a handheld extinguisher is better than losing a lot of electrical equipment to water damage. These systems are usually used only in data processing environments rather than the whole building, because of the higher cost of these types of systems.
* Deluge A deluge system has its sprinkler heads wide open to allow a larger volume of water to be released in a shorter period. Because the water being released is in such large volumes, these systems are usually not used in data processing environments.
Reference used for this question:
KRUTZ, Ronald L. & VINES, Russel D., The CISSP Prep Guide: Mastering the Ten
Domains of Computer Security, John Wiley & Sons, 2001, Chapter 10: Physical security
(page 336).
and
Corporate; (Isc)2 (2010-04-20). Official (ISC)2 Guide to the CISSP CBK, Second Edition
((ISC)2 Press) (Kindle Locations 14379-14391). Taylor & Francis. Kindle Edition.
and
Harris, Shon (2012-10-25). CISSP All-in-One Exam Guide, 6th Edition (Kindle Locations
10245-10253). McGraw-Hill. Kindle Edition.
and
Harris, Shon (2012-10-25). CISSP All-in-One Exam Guide, 6th Edition (Kindle Locations
10256-10260). McGraw-Hill. Kindle Edition.

NEW QUESTION # 376
Which of the following prevents improper aggregation of privileges in Role Based Access Control (RBAC)?

• A. The Clark-Wilson security model
• B. Dynamic separation of duties
• C. Hierarchical inheritance
• D. The Bell-LaPadula security model

Answer: B

NEW QUESTION # 377
The MAIN reason an organization conducts a security authorization process is to

• A. force the organization to enlist management support.
• B. assure the effectiveness of security controls.
• C. force the organization to make conscious risk decisions.
• D. assure the correct security organization exists.

Answer: C

Explanation:
The main reason an organization conducts a security authorization process is to force the organization to make conscious risk decisions. A security authorization process is a process that evaluates and approves the security of an information system or a product before it is deployed or used. A security authorization process involves three steps: security categorization, security assessment, and security authorization. Security categorization is the step of determining the impact level of the information system or product on the confidentiality, integrity, and availability of the information and assets. Security assessment is the step of testing and verifying the security controls and measures implemented on the information system or product. Security authorization is the step of granting or denying the permission to operate or use the information system or product based on the security assessment results and the risk acceptance criteria. The security authorization process forces the organization to make conscious risk decisions, as it requires the organization to identify, analyze, and evaluate the risks associated with the information system or product, and to decide whether to accept, reject, mitigate, or transfer the risks. The other options are not the main reasons, but rather the benefits or outcomes of a security authorization process. Assuring the effectiveness of security controls is a benefit of a security authorization process, as it provides an objective and independent evaluation of the security controls and measures. Assuring the correct security organization exists is an outcome of a security authorization process, as it establishes the roles and responsibilities of the security personnel and stakeholders. Forcing the organization to enlist management support is an outcome of a security authorization process, as it involves the management in the risk decision making and approval process. References: CISSP All-in-One Exam Guide, Eighth Edition, Chapter 8, p. 419; Official (ISC)2 CISSP CBK Reference, Fifth Edition, Chapter 3, p. 150.

NEW QUESTION # 378
You've decided to authenticate the source who initiated a particular transfer while ensuring integrity of the data being transferred. You can do this by:

• A. Having the sender encrypt the hash with his public key.
• B. Having the sender encrypt the message with his symmetric key.
• C. Having the sender encrypt the message with his private key.
• D. Having the sender encrypt the hash with his private key.

Answer: D

Explanation:
Instead of using a shared-key to encrypt the hash of a given message, the sender's private key is used to encrypt the hash value of the message. This is the act of digitally signing the message.
Digital Signatures provide authentication of a sender and integrity of a sender's message.
A message is input into a hash function. Then the hash value is encrypted using the private key of the sender. The result of these two steps yields a digital signature. The receiver can verify the digital signature by decrypting the hash value using the signer's public key, then perform the same hash computation over the message, and then compare the hash values for an exact match. If the hash values are the same then the signature is valid.
The following answers are incorrect:
Having the sender encrypt the hash with his public key. This does not provide any benefit because only the sender cold decrypt using his own private key and nobody else.
Encrypting with a publick key only provide Confidentiality and not other service.
Having the sender encrypt the message with his private key. This is close but not good enough. It would only provide authenticity of the source.
Having the sender encrypt the message with his symmetric key. This would provide only
Confidentiality.
The following reference(s) were/was used to create this question:
Hernandez CISSP, Steven (2012-12-21). Official (ISC)2 Guide to the CISSP CBK, Third
Edition ((ISC)2 Press) (Kindle Locations 14885-14889). Auerbach Publications. Kindle
Edition.

NEW QUESTION # 379
Checking routing information on e-mail to determine it is in a valid format and contains valid information is an example of which of the following anti-spam approaches?

• A. Simple Mail Transfer Protocol (SMTP) blacklist
• B. Header analysis
• C. Hashing algorithm
• D. Reverse Domain Name System (DNS) lookup

Answer: B

Explanation:
Header analysis is an example of an anti-spam approach that checks the routing information on e-mail to determine if it is in a valid format and contains valid information. The routing information, or the header, is the part of the e-mail that contains the sender, the recipient, the subject, the date, and the path of the e-mail. Header analysis can detect spam by looking for inconsistencies, anomalies, or falsifications in the header, such as mismatched domains, spoofed addresses, forged timestamps, or invalid characters34. References: 3: CISSP All-in-One Exam Guide, Eighth Edition, Chapter 6, page 6744: CISSP For Dummies, 7th Edition, Chapter 6, page 205.

NEW QUESTION # 380
You have been approached by one of your clients . They are interested in doing some security re-engineering . The client is looking at various information security models. It is a highly secure environment where data at high classifications cannot be leaked to subjects at lower classifications . Of primary concern to them, is the identification of potential covert channel. As an Information Security Professional , which model would you recommend to the client?

• A. Information Flow Model combined with Bell Lapadula
• B. Information Flow Model
• C. Biba
• D. Bell Lapadula

Answer: A

Explanation:
Securing the data manipulated by computing systems has been a challenge in the past years. Several methods to limit the information disclosure exist today, such as access control lists, firewalls, and cryptography. However, although these methods do impose limits on the information that is released by a system, they provide no guarantees about information propagation. For example, access control lists of file systems prevent unauthorized file access, but they do not control how the data is used afterwards. Similarly, cryptography provides a means to exchange information privately across a non-secure channel, but no guarantees about the confidentiality of the data are given once it is decrypted.
In low level information flow analysis, each variable is usually assigned a security level.
The basic model comprises two distinct levels: low and high, meaning, respectively, publicly observable information, and secret information. To ensure confidentiality, flowing information from high to low variables should not be allowed. On the other hand, to ensure integrity, flows to high variables should be restricted.
More generally, the security levels can be viewed as a lattice with information flowing only upwards in the lattice.
Noninterference Models
This could have been another good answer as it would help in minimizing the damage from covert channels.
The goal of a noninterference model is to help ensure that high-level actions (inputs) do not determine what low-level user s can see (outputs ) . Most of the security models presented are secured by permitting restricted ows between high- and low-level users. The noninterference model maintains activities at different security levels to separate these levels from each other. In this way, it minimizes leakages that may happen through covert channels, because there is complete separation (noninterference) between security levels.
Because a user at a higher security level has no way to interfere with the activities at a lower level, the lower-level user cannot get any information from the higher leve.
The following answers are incorrect:
Bell Lapadula
The Bell-LaPadula Model (abbreviated BLP) is a state machine model used for enforcing access control in government and military applications. It was developed by David Elliott
Bell and Leonard J. LaPadula, subsequent to strong guidance from Roger R. Schell to formalize the U.S. Department of Defense (DoD) multilevel security (MLS) policy. The model is a formal state transition model of computer security policy that describes a set of access control rules which use security labels on objects and clearances for subjects.
Security labels range from the most sensitive (e.g."Top Secret"), down to the least sensitive
(e.g., "Unclassified" or "Public").
The Bell-LaPadula model focuses on data confidentiality and controlled access to classified information, in contrast to the Biba Integrity Model which describes rules for the protection of data integrity. In this formal model, the entities in an information system are divided into subjects and objects. The notion of a "secure state" is defined, and it is proven that each state transition preserves security by moving from secure state to secure state, thereby inductively proving that the system satisfies the security objectives of the model.
The Bell-LaPadula model is built on the concept of a state machine with a set of allowable states in a computer network system. The transition from one state to another state is defined by transition functions.
A system state is defined to be "secure" if the only permitted access modes of subjects to objects are in accordance with a security policy. To determine whether a specific access mode is allowed, the clearance of a subject is compared to the classification of the object
(more precisely, to the combination of classification and set of compartments, making up the security level) to determine if the subject is authorized for the specific access mode.
The clearance/classification scheme is expressed in terms of a lattice. The model defines two mandatory access control (MAC) rules and one discretionary access control (DAC) rule with three security properties:
The Simple Security Property - a subject at a given security level may not read an object at a higher security level (no read-up).
The -property (read "star"-property) - a subject at a given security level must not write to any object at a lower security level (no write-down). The -property is also known as the
Confinement property.
The Discretionary Security Property - use of an access matrix to specify the discretionary access control.
The transfer of information from a high-sensitivity document to a lower-sensitivity document may happen in the Bell-LaPadula model via the concept of trusted subjects. Trusted
Subjects are not restricted by the -property. Untrusted subjects are. Trusted Subjects must be shown to be trustworthy with regard to the security policy. This security model is directed toward access control and is characterized by the phrase: "no read up, no write down."
With Bell-LaPadula, users can create content only at or above their own security level (i.e.
secret researchers can create secret or top-secret files but may not create public files; no write-down). Conversely, users can view content only at or below their own security level
(i.e. secret researchers can view public or secret files, but may not view top-secret files; no read-up).
The Bell-LaPadula model explicitly defined its scope. It did not treat the following extensively:
Covert channels. Passing information via pre-arranged actions was described briefly.
Networks of systems. Later modeling work did address this topic.
Policies outside multilevel security. Work in the early 1990s showed that MLS is one version of boolean policies, as are all other published policies.
Biba
The Biba Model or Biba Integrity Model developed by Kenneth J. Biba in 1977, is a formal state transition system of computer security policy that describes a set of access control rules designed to ensure data integrity. Data and subjects are grouped into ordered levels of integrity. The model is designed so that subjects may not corrupt objects in a level ranked higher than the subject, or be corrupted by objects from a lower level than the subject.
In general the model was developed to circumvent a weakness in the Bell-LaPadula model which only addresses data confidentiality.
In general, preservation of data integrity has three goals:
Prevent data modification by unauthorized parties
Prevent unauthorized data modification by authorized parties
Maintain internal and external consistency (i.e. data reflects the real world)
Note: Biba address only the first goal of integrity while Clark-Wilson addresses all three
This security model is directed toward data integrity (rather than confidentiality) and is characterized by the phrase: "no read down, no write up". This is in contrast to the Bell-
LaPadula model which is characterized by the phrase "no write down, no read up".
In the Biba model, users can only create content at or below their own integrity level (a monk may write a prayer book that can be read by commoners, but not one to be read by a high priest). Conversely, users can only view content at or above their own integrity level (a monk may read a book written by the high priest, but may not read a pamphlet written by a lowly commoner). Another analogy to consider is that of the military chain of command. A
General may write orders to a Colonel, who can issue these orders to a Major. In this fashion, the General's original orders are kept intact and the mission of the military is protected (thus, "no read down" integrity). Conversely, a Private can never issue orders to his Sergeant, who may never issue orders to a Lieutenant, also protecting the integrity of the mission ("no write up").
The Biba model defines a set of security rules similar to the Bell-LaPadula model. These rules are the reverse of the Bell-LaPadula rules:
The Simple Integrity Axiom states that a subject at a given level of integrity must not read an object at a lower integrity level (no read down).
The * (star) Integrity Axiom states that a subject at a given level of integrity must not write to any object at a higher level of integrity (no write up).
Lattice Model
In computer security, lattice-based access control (LBAC) is a complex access control model based on the interaction between any combination of objects (such as resources, computers, and applications) and subjects (such as individuals, groups or organizations).
In this type of label-based mandatory access control model, a lattice is used to define the levels of security that an object may have and that a subject may have access to. The subject is only allowed to access an object if the security level of the subject is greater than or equal to that of the object.
Mathematically, the security level access may also be expressed in terms of the lattice (a partial order set) where each object and subject have a greatest lower bound (meet) and least upper bound (join) of access rights. For example, if two subjects A and B need access to an object, the security level is defined as the meet of the levels of A and B. In another example, if two objects X and Y are combined, they form another object Z, which is assigned the security level formed by the join of the levels of X and Y.
The following reference(s) were/was used to create this question:
ISC2 Review Seminar Student Manual V8.00 page 255.
Dorothy Denning developed the information flow model to address convert channels .
and
The ISC2 Official Study Guide, Second Edition, on page 683-685
and
https://secure.wikimedia.org/wikipedia/en/wiki/Biba_security_model
and
https://secure.wikimedia.org/wikipedia/en/wiki/Bell%E2%80%93LaPadula_model and
https://secure.wikimedia.org/wikipedia/en/wiki/Lattice-based_access_control

NEW QUESTION # 381
An organization needs to evaluate the effectiveness of security controls implemented on a new system. Which of the following roles should the organization entrust to conduct the evaluation?

• A. Information System Security Officer (ISSO)
• B. System owner
• C. Control assessor
• D. Authorizing Official (AO)

Answer: C

NEW QUESTION # 382
Which of the following is NOT a media viability control used to protect the viability of data storage media?

• A. handling
• B. marking
• C. storage
• D. clearing

Answer: D

Explanation:
Source: KRUTZ, Ronald L. & VINES, Russel D., The CISSP Prep Guide: Mastering the Ten Domains of Computer Security, pages 231, 348. Marking, handling and storage are all media viability controls used to protect the viability of data storage media.

NEW QUESTION # 383
Which of the following BEST describes the purpose of performing security certification?

• A. To verify that system architecture and interconnections with other systems are effectively implemented
• B. To identify system threats, vulnerabilities, and acceptable level of risk
• C. To formalize the confirmation of completed risk mitigation and risk analysis
• D. To formalize the confirmation of compliance to security policies and standards

Answer: D

NEW QUESTION # 384
What part of an access control matrix shows capabilities that one user
has to multiple resources?

• A. Rows and columns
• B. Access control list
• C. Columns
• D. Rows

Answer: D

Explanation:
The rows of an access control matrix indicate the capabilities that
users have to a number of resources. An example of a row in the
access control matrix showing the capabilities of user JIM is given in
Table.
Answer columns, columns in the access control matrix, define the access control list.
Answer "Rows and columns" is incorrect since capabilities
involve only the rows of the access control matrix.
Answer "Access control list"

image009
is incorrect since an ACL, again, is a column in the access control
matrix.

NEW QUESTION # 385
Which of the following type of lock uses a numeric keypad or dial to gain entry?

• A. Bolting door locks
• B. Cipher lock
• C. Biometric door lock
• D. Electronic door lock

Answer: B

Explanation:
The combination door lock or cipher lock uses a numeric key pad, push button, or dial to gain entry, it is often seen at airport gate entry doors and smaller server rooms. The combination should be changed at regular interval or whenever an employee with access is transferred, fired or subject to disciplinary action. This reduces risk of the combination being known by unauthorized people.
A cipher lock, is controlled by a mechanical key pad, typically 5 to 10 digits that when pushed in
the right combination the lock will releases and allows entry. The drawback is someone looking
over a shoulder can see the combination. However, an electric version of the cipher lock is in
production in which a display screen will automatically move the numbers around, so if someone is
trying to watch the movement on the screen they will not be able to identify the number indicated
unless they are standing directly behind the victim.
Remember locking devices are only as good as the wall or door that they are mounted in and if the
frame of the door or the door itself can be easily destroyed then the lock will not be effective. A
lock will eventually be defeated and its primary purpose is to delay the attacker.
For your exam you should know below types of lock
Bolting door lock - These locks required the traditional metal key to gain entry. The key should be
stamped "do not duplicate" and should be stored and issued under strict management control.
Biometric door lock - An individual's unique physical attribute such as voice, retina, fingerprint,
hand geometry or signature, activate these locks. This system is used in instances when sensitive
facilities must be protected such as in the military.
Electronic door lock - This system uses a magnetic or embedded chip based plastic card key or
token entered into a sensor reader to gain access. A special code internally stored in the card or
token is read by sensor device that then activates the door locking mechanism.
The following were incorrect answers:
Bolting door lock - These locks required the traditional metal key to gain entry. The key should be
stamped "do not duplicate" and should be stored and issued under strict management control.
Biometric door lock - An individual's unique body features such as voice, retina, fingerprint,, hand
geometry or signature, activate these locks. This system is used in instances when extremely
sensitive facilities must be protected such as in the military.
Electronic door lock - This system uses a magnetic or embedded chip based plastic card key or
token entered into a sensor reader to gain access. A special code internally stored in the card or
token is read by sensor device that then activates the door locking mechanism.
Following reference(s) were/was used to create this question:
CISA review manual 2014 Page number 376
and
Hernandez CISSP, Steven (2012-12-21). Official (ISC)2 Guide to the CISSP CBK, Third Edition
((ISC)2 Press) (Kindle Locations 25144-25150). Auerbach Publications. Kindle Edition.

NEW QUESTION # 386
In non-discretionary access control using Role Based Access Control (RBAC), a central authority determines what subjects can have access to certain objects based on the organizational security policy. The access controls may be based on:

• A. The group-dynamics as they relate to the individual's role in the organization
• B. The societies role in the organization
• C. The group-dynamics as they relate to the master-slave role in the organization
• D. The individual's role in the organization

Answer: D

Explanation:
In Non-Discretionary Access Control, when Role Based Access Control is being used, a central authority determines what subjects can have access to certain objects based on the organizational security policy. The access controls may be based on the individual's role in the organization.
Reference(S) used for this question:
KRUTZ, Ronald L. & VINES, Russel D., The CISSP Prep Guide: Mastering the Ten
Domains of Computer Security, 2001, John Wiley & Sons, Page 33

NEW QUESTION # 387
Access to which of the following is required to validate web session management?

• A. Live session traffic
• B. Session state variables
• C. Test scripts
• D. Log timestamp

Answer: B

Explanation:
Section: Communication and Network Security

NEW QUESTION # 388
Which model, based on the premise that the quality of a software product is a direct function of the quality of its associated software development and maintenance processes, introduced five levels with which the maturity of an organization involved in the software process is evaluated?

• A. The IDEAL Model
• B. The Total Quality Model (TQM)
• C. The Software Capability Maturity Model
• D. The Spiral Model

Answer: C

Explanation:
The Software Capability Maturity Model (CMM) is based on the premise that the quality of a software product is a direct function of the quality of its associated software development and maintenance processes. It introduces five maturity levels that serve as a foundation for conducting continuous process improvement and as an ordinal scale for measuring the maturity of the organization involved in the software processes. Source: KRUTZ, Ronald L. & VINES, Russel D., The CISSP Prep Guide: Mastering the Ten Domains of Computer Security, John Wiley & Sons, 2001, Chapter 7: Applications and Systems Development (page 254).

NEW QUESTION # 389
Given a file containing ordered number, i.e. "123456789," match each of the following redundant Array of independent Disks (RAID) levels to the corresponding visual representation visual representation. Note: P() = parity.
Drag each level to the appropriate place on the diagram.

Answer:

Explanation:

NEW QUESTION # 390
In what LAN topology do all the transmissions of the network travel the full length of cable and are received by all other stations?

• A. FDDI topology
• B. Bus topology
• C. Ring topology
• D. Star topology

Answer: B

Explanation:
Explanation/Reference:
Explanation:
In a bus topology a linear, single cable for all computers attached is used. All traffic travels the full cable and can be viewed by all other computers.
Incorrect Answers:
B: In a ring topology all computers are connected by a unidirectional transmission link, and the cable is in a closed loop.
C: In a star topology all computers are connected to a central device, which provides more resilience for the network.
D: FDDI is a media access methodology, not a LAN topology.
References:
Harris, Shon, All In One CISSP Exam Guide, 6th Edition, McGraw-Hill, New York, 2013, p. 566

NEW QUESTION # 391
......

Use Valid New CISSP Test Notes & CISSP Valid Exam Guide: https://www.trainingquiz.com/CISSP-practice-quiz.html

CISSP exam torrent ISC study guide: https://drive.google.com/open?id=1WI58YNdbhyFBAGHF6dVbDeYJf-17RlBZ