1206 お客様のコメント
質問 1:
The <namelD> element in SAML can be provided in which of the following predefined formats? (Select
TWO).
A. EV certificate OID extension
B. PTR DNS record
C. X.509 subject name
D. Kerberos principal name
E. WWN record name
正解:C,D
質問 2:
The following has been discovered in an internally developed application:
Error - Memory allocated but not freed:
char *myBuffer = malloc(BUFFER_SIZE); if (myBuffer != NULL) {
*myBuffer = STRING_WELCOME_MESSAGE; printf("Welcome to: %s\n", myBuffer);
} exit(0);
Which of the following security assessment methods are likely to reveal this security weakness? (Select
TWO).
A. Manual code review
B. Black box testing
C. Penetration testing
D. Static code analysis
E. Memory dumping
F. Application sandboxing
正解:A,D
解説: (Pass4Test メンバーにのみ表示されます)
質問 3:
During a new desktop refresh, all hosts are hardened at the OS level before deployment to comply with policy. Six months later, the company is audited for compliance to regulations. The audit discovers that 40 percent of the desktops do not meet requirements. Which of the following is the MOST likely cause of the noncompliance?
A. 40 percent of the devices use full disk encryption.
B. The devices are being modified and settings are being overridden in production.
C. The patch management system is causing the devices to be noncompliant after issuing the latest patches.
D. The desktop applications were configured with the default username and password.
正解:B
解説: (Pass4Test メンバーにのみ表示されます)
質問 4:
A system administrator needs to meet the maximum amount of security goals for a new DNS infrastructure. The administrator deploys DNSSEC extensions to the domain names and infrastructure.
Which of the following security goals does this meet? (Select TWO).
A. Encryption
B. Authentication
C. Confidentiality
D. Integrity
E. Availability
正解:B,D
解説: (Pass4Test メンバーにのみ表示されます)
質問 5:
A security administrator wants to prevent sensitive data residing on corporate laptops and desktops from leaking outside of the corporate network. The company has already implemented full-disk encryption and has disabled all peripheral devices on its desktops and laptops. Which of the following additional controls
MUST be implemented to minimize the risk of data leakage? (Select TWO).
A. Split-tunnel VPN should be enforced when transferring sensitive data.
B. A DLP gateway should be installed at the company border.
C. Full-tunnel VPN should be required for all network communication.
D. A full-system backup should be implemented to a third-party provider with strong encryption for data in transit.
E. Full-drive file hashing should be implemented with hashes stored on separate storage.
F. Strong authentication should be implemented via external biometric devices.
正解:B,C
解説: (Pass4Test メンバーにのみ表示されます)
The <namelD> element in SAML can be provided in which of the following predefined formats? (Select
TWO).
A. EV certificate OID extension
B. PTR DNS record
C. X.509 subject name
D. Kerberos principal name
E. WWN record name
正解:C,D
質問 2:
The following has been discovered in an internally developed application:
Error - Memory allocated but not freed:
char *myBuffer = malloc(BUFFER_SIZE); if (myBuffer != NULL) {
*myBuffer = STRING_WELCOME_MESSAGE; printf("Welcome to: %s\n", myBuffer);
} exit(0);
Which of the following security assessment methods are likely to reveal this security weakness? (Select
TWO).
A. Manual code review
B. Black box testing
C. Penetration testing
D. Static code analysis
E. Memory dumping
F. Application sandboxing
正解:A,D
解説: (Pass4Test メンバーにのみ表示されます)
質問 3:
During a new desktop refresh, all hosts are hardened at the OS level before deployment to comply with policy. Six months later, the company is audited for compliance to regulations. The audit discovers that 40 percent of the desktops do not meet requirements. Which of the following is the MOST likely cause of the noncompliance?
A. 40 percent of the devices use full disk encryption.
B. The devices are being modified and settings are being overridden in production.
C. The patch management system is causing the devices to be noncompliant after issuing the latest patches.
D. The desktop applications were configured with the default username and password.
正解:B
解説: (Pass4Test メンバーにのみ表示されます)
質問 4:
A system administrator needs to meet the maximum amount of security goals for a new DNS infrastructure. The administrator deploys DNSSEC extensions to the domain names and infrastructure.
Which of the following security goals does this meet? (Select TWO).
A. Encryption
B. Authentication
C. Confidentiality
D. Integrity
E. Availability
正解:B,D
解説: (Pass4Test メンバーにのみ表示されます)
質問 5:
A security administrator wants to prevent sensitive data residing on corporate laptops and desktops from leaking outside of the corporate network. The company has already implemented full-disk encryption and has disabled all peripheral devices on its desktops and laptops. Which of the following additional controls
MUST be implemented to minimize the risk of data leakage? (Select TWO).
A. Split-tunnel VPN should be enforced when transferring sensitive data.
B. A DLP gateway should be installed at the company border.
C. Full-tunnel VPN should be required for all network communication.
D. A full-system backup should be implemented to a third-party provider with strong encryption for data in transit.
E. Full-drive file hashing should be implemented with hashes stored on separate storage.
F. Strong authentication should be implemented via external biometric devices.
正解:B,C
解説: (Pass4Test メンバーにのみ表示されます)
Orihara -
RC0-C02試験対応資料を入手してから、ひたすら熟読することを繰り返しました。無事で試験合格しました。ありがとうございました。