Chapter 9Practice Test 2

  1. During a system audit, Casey notices that the private key for her organization’s web server has been stored in a public Amazon S3 storage bucket for more than a year. What should she do?

    1. Remove the key from the bucket.
    2. Notify all customers that their data may have been exposed.
    3. Request a new certificate using a new key.
    4. Nothing, because the private key should be accessible for validation

  2. Which of the following is not a common threat to access control mechanisms?

    1. Fake login pages
    2. Phishing
    3. Dictionary attacks
    4. Man-in-the-middle attacks

  3. Which one of the following would be considered an example of infrastructure as a service cloud computing?

    1. Payroll system managed by a vendor and delivered over the web ...

Get (ISC)2 SSCP Systems Security Certified Practitioner Official Practice Tests now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial