An authentication method uses smart cards as well as usernames and passwords for authentication. Which of the following authentication methods is being referred to? Response:

• A.Biometrics
• B.Mutual
• C.Multi-factor
• D.Anonymous

Comment: *

Name: *

Email: *

Verification: *

The registration of the system directly follows which RMF task? Response:

• A.Task P-17 Requirements allocation
• B.Categorize the system
• C.Select security controls
• D.Review and approve the SSP

Comment: *

Name: *

Email: *

Verification: *

Which of the following is used to indicate that the software has met a defined quality level and is ready for mass distribution either by electronic means or by physical media? Response:

• A.ATM
• B.RTM
• C.DAA
• D.CRO

Comment: *

Name: *

Email: *

Verification: *

In which step of the NIST SP 800-30 Risk Assessment process are vulnerabilities paired with threats? Response:

• A.Evaluation and Assessment
• B.Vulnerability Identification
• C.Likelihood Determination
• D.Impact Analysis

Comment: *

Name: *

Email: *

Verification: *

The transfer of risk is one of the five risk treatment methods pointed out in NIST 800-37 Rev 2.
Choose an example of risk transfer from the following options.
Response:

• A.Control inheritance
• B.Avoindance
• C.Warranty
• D.Control implementation

Comment: *

Name: *

Email: *

Verification: *