最新的PCI PCIP3.0免費考試真題

問題1

PCI Requirement 12.6 requires personnel to acknowledge at least _______ that they have read and understood the security policy and procedures.

A. Every six months

B. Quarterly

C. Annually

D. Once during their employment

正確答案: C

問題2

Information Security Policies must be reviewed/updated _____________ to meet requirement 12.1.1

A. Every 6 months

B. Monthly

C. Quarterly

D. Yearly

正確答案: D

問題3

Which of the following lists the correct "order" for the flow of a payment card transaction?

A. Authorization, Settlement, Clearing

B. Authorization, Clearing, Settlement

C. Clearing, Authorization, Settlement

D. Clearing, Settlement, Authorization

正確答案: B

問題4

Restrict physical access to cardholder data is the _________

A. Requirement 7

B. Requirement 10

C. Requirement 9

D. Requirement 8

正確答案: C

問題5

Methods for stealing payment card data include:

A. Weak passwords

B. Physical skimming

C. All of the options are correct

D. Malware

正確答案: C

問題6

For initial PCI DSS compliance, it's not required that four quarters of passing scans must be completed if the assessor verifies that 1) the most recent scan result was a passing scan, 2) the entity has documented policies and procedures requiring quarterly scanning, and 3) vulnerabilities noted in the scan results have been corrected as shown in a re-scan(s).

A. False

B. True

正確答案: B

問題7

The presumption of P2PE is that:

A. The data cannot be decrypted between the source and the destination points

B. Any entity in possession of the ciphertext can easily reverse the encryption process

C. The data can never be decrypted

D. The data can be decrypted between the source and the destination points

正確答案: A

問題8

The P2PE Standard covers:

A. Mechanisms used to protect the PIN and encrypted PIN blocks

B. Encryption, decryption, and key management requirements for point-to-point encryption solutions

C. Secure payment applications for processing transactions

D. Physical security requirements for manufacturing payment cards

正確答案: B

問題9

SELECT ALL THAT APPLY
Select all audit trails that must be recorded for all system components according to requirement 10.3

A. Date and time

B. Success or failure identification

C. Type of event

D. Identity or name of affected data, system component, or resource

E. Origination of event

F. User identification

正確答案: A,B,C,D,E,F

最新的PCI Payment Card Industry Professional - PCIP3.0免費考試真題

聯系我們

站內鏈接

最新更新