CompTIA SY0-501 Security+ Take Ten Challenge #5Step 1 of 1010%5-1: When visiting a website, a browser complains that the website is not trusted. Which of the following would be the MOST likely cause of this error? Certificate is expired The server has a segmentation fault Web server version is outdated The server license is invalid The server is configured with the default settings 5-2: A cloud service is configured to scale up when the application becomes busy, and scale down when the demand is low. Which of the following describes this characteristic? Fault-tolerance Redundancy Elasticity Templates Segmentation 5-3: An application developer has included the public key of a server as part of their app. Which of these would BEST describe this technique? Pinning Stapling Stretching Hashing Escrow 5-4: Which of these threat actors often gain access to remote systems without any sophisticated knowledge of exploits or attacks? Nation state Competitor Hacktivist Insider Script kiddie 5-5: Which of the following would be the best way to digitally sign email content? S/MIME SSH IMAP4 POP3 SSL 5-6: Which of the following would be the BEST way to identify employee fraud? Role-based awareness training Chain of custody Mandatory vacations Tabletop exercise Penetration testing 5-7: A security engineer is using the same key to encrypt and decrypt data. Which of the following is the engineer using? ECC Diffie-Hellman Blowfish PGP SHA-2 5-8: Which of the following would commonly require authentication to gain access to a network? SIEM 802.1X STP Anti-spoofing DLP 5-9: Which of the following would be the BEST way to provide security of cloud-based applications? PKI IPS CASB VPN IaaS 5-10: Which of the following could be used to deploy a standard password setting on Windows computers? Biometrics Least privilege TOTP - Time-based one-time password algorithm Permission auditing Group policies
