Mock Exam 1

  1. What type of attack is a padding oracle on downgraded legacy encryption attack? Choose two from the following list:

A. IV attack

B. Replay attack

C. Man-in-the-middle attack

D. TLS 1.0 with electronic code book

E. SSL 3.0 with chain block cipher

Answer: C and E

Concept: A POODLE attack is a man-in-the-middle attack that exploits a downgraded browser using SSL 3.0 with CBC.

  1. You are the security administrator for the British secret service. What type of access method will you use for secret and top-secret data?

A. DAC, with the owner of the data giving access

B. DAC, with the custodian of the data giving access

C. DAC, with the security administrator giving access

D. MAC, with the security administrator giving access

Answer ...

Get CompTIA Security+ Certification Guide now with O’Reilly online learning.

O’Reilly members experience live online training, plus books, videos, and digital content from 200+ publishers.