Q1. Which one of the following is not a security testing control?
Q2. Access is controlled through a retina scanner for the identification, authentication, and authorization of operators to a data center. A legitimate user was erroneously denied access during a scan. Such errors can be categorized under which one of the following?
Q3. The effectiveness of a security control is a measure for which one of the following?
Q4. The collection of security process, test data, and reporting is used to verify what?