5 questions would be shown from a total of 30 free practice questions to prepare you for CISSP exam. Enjoy!
1 / 5
1. Which of the following is the BEST definition of Cross-Site Request Forgery (CSRF)? Explanation/Reference:
Reference: https://portswigger.net/web-security/csrf
2 / 5
2. A security architect plans to reference a Mandatory Access Control (MAC) model for implementation. This indicates that which of the following properties are being prioritized? Explanation/Reference:
Explanation: Mandatory Access Control (MAC) is system-enforced access control based on a subject’s clearance and an object’s labels. Subjects and Objects have clearances and labels, respectively, such as confidential, secret, and top secret. A subject may access an object only if the subject’s clearance is equal to or greater than the object’s label. Subjects cannot share objects with other subjects who lack the proper clearance, or “write down” objects to a lower classification level (such as from top secret to secret). MAC systems are usually focused on preserving the confidentiality of data.
Reference: https://www.sciencedirect.com/topics/computer-science/mandatory-access-control
3 / 5
3. What is the MOST common component of a vulnerability management framework? Explanation/Reference:
Reference: https://www.helpnetsecurity.com/2016/10/11/effective-vulnerability-management-process/
4 / 5
4. An application team is running tests to ensure that user entry fields will not accept invalid input of any length. Explanation/Reference: What type of negative testing is this an example of?
Reference: https://www.softwaretestinghelp.com/what-is-negative-testing/
5 / 5
5. Directive controls are a form of change management policy and procedures. Which of the following subsections are recommended as part of the change management process? Explanation/Reference:
Reference: https://books.google.com.pk/books?id=9gCn86CmsNQC&pg=PA570&lpg=PA570&dq=CISSP +Directive+controls+are+a+form+of+change+management+policy+and+procedures.+Which+of+the+following +subsections+are+recommended+as+part+of+the+change+management +process&source=bl&ots=riGvVpSS3E&sig=ACfU3U3dLYheW_GfTZcAYfN97fnDFlMmZg&hl=en&sa=X&ved= 2ahUKEwjukoqK96npAhULtRoKHZEpBmcQ6AEwAHoECBQQAQ#v=onepage&q=CISSP%20Directive% 20controls%20are%20a%20form%20of%20change%20management%20policy%20and%20procedures.% 20Which%20of%20the%20following%20subsections%20are%20recommended%20as%20part%20of%20the% 20change%20management%20process&f=false
Your score is
The average score is 50%
Practice Again
More IT practice tests CLICK HERE
More IT practice tests
CLICK HERE