An effective information security policy should not have which of the following characteristic?

• A.Include separation of duties
• B.Be designed with a short- to mid-term focus
• C.Be understandable and supported by all stakeholders
• D.Specify areas of responsibility and authority

Comment: *

Name: *

Email: *

Verification: *

Which of the following is BEST defined as a physical control?

• A.Monitoring of system activity
• B.Fencing
• C.Identification and authentication methods
• D.Logical access control mechanisms

Comment: *

Name: *

Email: *

Verification: *

A trusted system does NOT involve which of the following?

• A.Enforcement of a security policy.
• B.Sufficiency and effectiveness of mechanisms to be able to enforce a security policy.
• C.Assurance that the security policy can be enforced in an efficient and reliable manner.
• D.Independently-verifiable evidence that the security policy-enforcing mechanisms are sufficient and effective.

Comment: *

Name: *

Email: *

Verification: *

The basic language of modems and dial-up remote access systems is:

• A.Asynchronous Communication.
• B.Synchronous Communication.
• C.Asynchronous Interaction.
• D.Synchronous Interaction.

Comment: *

Name: *

Email: *

Verification: *

The computations involved in selecting keys and in enciphering data are complex, and are not practical for manual use. However, using mathematical properties of modular arithmetic and a method known as
"_________________," RSA is quite feasible for computer use.

• A.computing in Galois fields
• B.computing in Gladden fields
• C.computing in Gallipoli fields
• D.computing in Galbraith fields

Comment: *

Name: *

Email: *

Verification: *