Free CCSP Exam Braindumps

- (Exam Topic 1)
Which technology is NOT commonly used for security with data in transit?

1. A. DNSSEC
2. B. IPsec
3. C. VPN
4. D. HTTPS

Correct Answer: A
DNSSEC relates to the integrity of DNS resolutions and the prevention of spoofing or redirection, and does not pertain to the actual security of transmissions or the protection of data.

- (Exam Topic 4)
DLP can be combined with what other security technology to enhance data controls?

1. A. SIEM
2. B. Hypervisors
3. C. DRM
4. D. Kerberos

Correct Answer: C
DLP can be combined with DRM to protect intellectual property; both are designed to deal with data that falls into special categories. SIEMs are used for monitoring event logs, not live data movement. Kerberos is an authentication mechanism. Hypervisors are used for virtualization.

- (Exam Topic 2)
What concept does the "A" represent in the DREAD model?

1. A. Affected users
2. B. Authentication
3. C. Affinity
4. D. Authorization

Correct Answer: A
Affected users refers to the percentage of users who would be impacted by a successful exploit. Scoring ranges from 0, which means no users are impacted, to 10, which means all users are impacted.

- (Exam Topic 1)
Which United States law is focused on accounting and financial practices of organizations?

1. A. Safe Harbor
2. B. GLBA
3. C. SOX
4. D. HIPAA

Correct Answer: C
The Sarbanes-Oxley (SOX) Act is not an act that pertains to privacy or IT security directly, but rather regulates accounting and financial practices used by organizations. It was passed to protect stakeholders and shareholders from improper practices and errors, and it sets forth rules for compliance, regulated and enforced by the Securities and Exchange Commission (SEC). The main influence on IT systems and operations is the requirements it sets for data retention, specifically in regard to what types of records must be preserved and for how long.

- (Exam Topic 4)
Having a reservation in a cloud environment can ensure operations continue in the event of high utilization across the cloud.
Which of the following would NOT be a capability covered by reservations?

1. A. Performing business operations
2. B. Starting virtual machines
3. C. Running applications
4. D. Auto-scaling

Correct Answer: D
A reservation will not guarantee auto-scaling is available because it involves the allocation of additional resources beyond what a cloud customer already has provisioned. Reservations will guarantee minimal resources are available to start virtual machines, run applications, and perform normal business operations.