最新的GIAC GDSA免費考試真題

問題1

What is the primary benefit of implementing automated patch management within a Zero Trust Endpoint strategy?
Response:

A. Automates backup processes only

B. Increases the complexity of the system, enhancing security through obscurity

C. Reduces the need for IT staff

D. Ensures timely application of patches, reducing the window of vulnerability

正確答案: D

問題2

Why are proactive defenses important in shaping attacker behaviors in Zero Trust Networking?
Response:

A. They solely rely on passive detection mechanisms

B. They encourage attackers to use more predictable strategies

C. They focus on strengthening perimeter defenses only

D. They aim to preemptively disrupt and deter attack tactics

正確答案: D

問題3

Which of the following are considered best practices when implementing secure remote access?
(Choose two)
Response:

A. Employing multi-factor authentication

B. Allowing unlimited access from any location

C. Ensuring end-to-end encryption

D. Using shared passwords for convenience

正確答案: A,C

問題4

SMTP proxies are specifically used to secure which type of network traffic?
Response:

A. Email

B. FTP

C. HTTP

D. DNS

正確答案: A

問題5

What is a primary function of CIDR in network design?
Response:

A. Implementing robust firewall policies

B. Facilitating private IP address translation

C. Optimizing the use of IP address space

D. Assigning multiple IP addresses to a single host

正確答案: C

問題6

Which of the following are effective strategies for securing SNMP traffic at Layer 3?
(Choose two)
Response:

A. Allowing SNMP traffic from any IP address for easier management

B. Disabling SNMP on all unused devices

C. Configuring SNMP with strong authentication (e.g., SNMPv3)

D. Using SNMPv1 for better compatibility

正確答案: B,C

問題7

Your organization is implementing Zero Trust Networking. During an internal audit, your team identifies a critical flaw in how endpoint traffic is authenticated before accessing sensitive resources. Several devices have bypassed authentication and are communicating with internal systems.
What immediate actions should you take to align with the Zero Trust Networking model and secure the network?
Response:

A. Disable all network traffic until a full security audit is completed

B. Allow unauthenticated devices to access non-critical systems while reviewing network configurations

C. Restrict all external traffic and allow internal traffic to continue without further verification

D. Implement Single Packet Authentication (SPA) for all devices and enforce endpoint traffic encryption

正確答案: D

問題8

Which of the following best describes the purpose of IPv6 tunneling?
Response:

A. To encapsulate IPv6 packets within IPv4 packets for transport over IPv4 networks

B. To replace all IPv4 traffic with IPv6 traffic without requiring any network changes

C. To provide additional encryption and security to IPv6 packets

D. To increase the latency and packet overhead in the network

正確答案: A

問題9

What is data discovery in the context of data governance?
Response:

A. Ignoring data privacy regulations

B. Removing all data from the network

C. Identifying and classifying data stored in various locations within an organization

D. Migrating all company data to the cloud

正確答案: C

問題10

Which of the following is the primary role of database firewalls in data-centric security?
Response:

A. Backing up databases in real time

B. Protecting databases from unauthorized access and SQL injection attacks

C. Monitoring network traffic for anomalies

D. Encrypting data during transmission

正確答案: B

問題11

Which techniques are effective for enhancing network security monitoring?
(Choose two)
Response:

A. Using encryption for all inbound connections

B. Implementing deep packet inspection for detailed traffic analysis

C. Disabling all outbound traffic to prevent data leakage

D. Deploying Network Intrusion Prevention Systems (NIPS)

正確答案: B,D

問題12

Which of the following are key concepts of the Intrusion Kill Chain model?
(Choose two)
Response:

A. Network monitoring

B. Reconnaissance

C. Delivery

D. Incident reporting

正確答案: B,C

問題13

What role does mobility management play in data governance?
Response:

A. Ensures that mobile applications are entertaining

B. Controls access to data through mobile devices and ensures data protection regardless of location

C. Manages the physical movement of data servers

D. Focuses only on data stored on desktop computers

正確答案: B

問題14

Encryption in network security serves to:
Response:

A. Slow down the network.

B. Increase the network's latency.

C. Prevent unauthorized data manipulation and eavesdropping.

D. Replace the need for a firewall.

正確答案: C

最新的GIAC Defensible Security Architect - GDSA免費考試真題

聯系我們

站內鏈接

最新更新