Online Access Free CISSP Exam Questions

Transport Layer Security (TLS) provides which of the following capabilities for a remote access server?

• A.Application layer negotiation
• B.Transport layer handshake compression
• C.Digital certificate revocation
• D.Peer identity authentication

Which of the following is the MOST important security goal when performing application interface testing?

• A.Evaluate whether systems or components pass data and control correctly to one another
• B.Examine error conditions related to external interfaces to prevent application details leakage
• C.Confirm that all platforms are supported and function properly
• D.Verify compatibility of software, hardware, and network connections

A company developed a web application which is sold as a Software as a Service (SaaS) solution to the customer. The application is hosted by a web server running on a specific operating system (OS) on a virtual machine (VM). During the transition phase of the service, it is determined that the support team will need access to the application logs. Which of the following privileges would be the MOST suitable?

• A.Administrative privileges on the application folders
• B.Administrative privileges on the web server
• C.Administrative privileges on the hypervisor
• D.Administrative privileges on the OS

When designing a business continuity plan (BCP), what is the formula to determine the Maximum Tolerable Downtime (MTD)?

• A.Recovery Time Objective (RTO) + Work Recovery Time (WRT)
• B.Business impact analysis (BIA) + Recovery Point Objective (RPO)
• C.Annual Loss Expectancy (ALE) + Work Recovery Time (WRT)
• D.Estimated Maximum Loss (EML) + Recovery Time Objective (RTO)

Drag and Drop Question
Match the objectives to the assessment questions in the governance domain of Software Assurance Maturity Model (SAMM).

Correct Answer: