Which of the following statements pertaining to VPN protocol standards is false?

• A.L2TP is a combination of PPTP and L2F.
• B.L2TP and PPTP were designed for single point-to-point client to server communication.
• C.L2TP operates at the network layer.
• D.PPTP uses native PPP authentication and encryption services.

Comment: *

Name: *

Email: *

Verification: *

Memory management in TCSEC levels B3 and A1 operating systems may utilize "data hiding". What does this mean?

• A.System functions are layered, and none of the functions in a given layer can access data outside that layer.
• B.Auditing processes and their memory addresses cannot be accessed by user processes.
• C.Only security processes are allowed to write to ring zero memory.
• D.It is a form of strong encryption cipher.

Comment: *

Name: *

Email: *

Verification: *

Which of the following is not a logical control when implementing logical access security?

• A.access profiles.
• B.userids.
• C.employee badges.
• D.passwords.

Comment: *

Name: *

Email: *

Verification: *

Controls like guards and general steps to maintain building security, securing of server rooms or laptops, the protection of cables, and usage of magnetic switches on doors and windows are some of the examples of:

• A.Administrative controls
• B.Logical controls
• C.Technical controls
• D.Physical controls

Comment: *

Name: *

Email: *

Verification: *

Which of the following phases of a system development life-cycle is most concerned with maintaining proper authentication of users and processes to ensure appropriate access control decisions?

• A.Development/acquisition
• B.Implementation
• C.Operation/Maintenance
• D.Initiation

Comment: *

Name: *

Email: *

Verification: *