« 返回题库列表2026年CISSP真题及答案解析|认证考试重点知识+备考指南
问题 #1
Which of the following plan provides procedures for sustaining essential business operations while recovering from significant disruption?
A. Business Continuity Plan
B. Occupant Emergency Plan
C. Cyber Incident Response Plan
D. Disaster Recovery Plan
问题 #2
Which of the following statements pertaining to disaster recovery planning is incorrect?
A. Every organization must have a disaster recovery plan
B. A disaster recovery plan contains actions to be taken before, during and after a disruptive event.
C. The major goal of disaster recovery planning is to provide an organized way to make decisions if a disruptive event occurs.
D. A disaster recovery plan should cover return from alternate facilities to primary facilities.
问题 #3
Which of the following statements do apply to a hot site?
A. It is expensive.
B. There are cases of common overselling of processing capabilities by the service provider.
C. It provides a false sense of security.
D. It is accessible on a first come first serve basis. In case of large disaster it might Be accessible.
问题 #4
What can be defined as a batch process dumping backup data through communications lines to a server at an alternate location?
A. Remote journaling
B. Electronic vaulting
C. Data clustering
D. Database shadowing
问题 #5
Which of the following is the most complete disaster recovery plan test type, to be performed after successfully completing the Parallel test?
A. Full Interruption test
B. Checklist test
C. Simulation test
D. Structured walk-through test
问题 #6
What is the Maximum Tolerable Downtime (MTD)?
A. Maximum elapsed time required to complete recovery of application data
B. Minimum elapsed time required to complete recovery of application data
C. Maximum elapsed time required to move back to primary site after a major disruption
D. It is maximum delay businesses can tolerate and still remain viable
问题 #7
Which of the following specifically addresses cyber-attacks against an organization's IT systems?
A. Continuity of support plan
B. Business continuity plan
C. Incident response plan
D. Continuity of operations plan
问题 #8
During the salvage of the Local Area Network and Servers, which of the following steps would normally be performed first?
A. Damage mitigation
B. Install LAN communications network and servers
C. Assess damage to LAN and servers
D. Recover equipment
问题 #9
Which disaster recovery plan test involves functional representatives meeting to review the plan in detail?
A. Simulation test
B. Checklist test
C. Parallel test
D. Structured walk-through test
问题 #10
When preparing a business continuity plan, who of the following is responsible for identifying and prioritizing time-critical systems?
A. Executive management staff
B. Senior business unit management
C. BCP committee
D. Functional business units
问题 #11
In addition to the Legal Department, with what company function must the collection of physical evidence be coordinated if an employee is suspected?
A. Human Resources
B. Industrial Security
C. Public Relations
D. External Audit Group
问题 #12
To be admissible in court, computer evidence must be which of the following?
A. Relevant
B. Decrypted
C. Edited
D. Incriminating
问题 #13
Once evidence is seized, a law enforcement officer should emphasize which of the following?
A. Chain of command
B. Chain of custody
C. Chain of control
D. Chain of communications
问题 #14
Which of the following cannot be undertaken in conjunction or while computer incident handling is ongoing?
A. System development activity
B. Help-desk function
C. System Imaging
D. Risk management process
问题 #15
In the process of gathering evidence from a computer attack, a system administrator took a series of actions which are listed below. Can you identify which one of these actions has compromised the whole evidence collection process?
A. Using a write blocker
B. Made a full-disk image
C. Created a message digest for log files
D. Displayed the contents of a folder
问题 #16
What is the PRIMARY goal of incident handling?
A. Successfully retrieve all evidence that can be used to prosecute
B. Improve the company's ability to be prepared for threats and disasters
C. Improve the company's disaster recovery plan
D. Contain and repair any damage caused by an event.
问题 #17
Which of the following would be LESS likely to prevent an employee from reporting an incident?
A. They are afraid of being pulled into something they don't want to be involved with.
B. The process of reporting incidents is centralized.
C. They are afraid of being accused of something they didn't do.
D. They are unaware of the company's security policies and procedures.
问题 #18
In an online transaction processing system (OLTP), which of the following actions should be taken when erroneous or invalid transactions are detected?
A. The transactions should be dropped from processing.
B. The transactions should be processed after the program makes adjustments.
C. The transactions should be written to a report and reviewed.
D. The transactions should be corrected and reprocessed.
问题 #19
When considering all the reasons that buffer overflow vulnerabilities exist what is the real reason?
A. Human error
B. The Windows Operating system
C. Insecure programming languages
D. Insecure Transport Protocols
问题 #20
A security evaluation report and an accreditation statement are produced in which of the following phases of the system development life cycle?
A. project initiation and planning phase
B. system design specification phase
C. development & documentation phase
D. acceptance phase
问题 #21
Which of the following is often the GREATEST challenge of distributed computing solutions?
A. scalability
B. security
C. heterogeneity
D. usability
问题 #22
What is the appropriate role of the security analyst in the application system development or acquisition project?
A. policeman
B. control evaluator & consultant
C. data owner
D. application user
问题 #23
The information security staff's participation in which of the following system development life cycle phases provides maximum benefit to the organization?
A. project initiation and planning phase
B. system design specifications phase
C. development and documentation phase
D. in parallel with every phase throughout the project
问题 #24
Which answer BEST describes a computer software attack that takes advantage of a previously unpublished vulnerability?
A. Zero-Day Attack
B. Exploit Attack
C. Vulnerability Attack
D. Software Crack
问题 #25
A 'Pseudo flaw' is which of the following?
A. An apparent loophole deliberately implanted in an operating system program as a trap for intruders.
B. An omission when generating Pseudo-code.
C. Used for testing for bounds violations in application programming.
D. A normally generated page fault causing the system to halt.
问题 #26
Which of the following is based on the premise that the quality of a software product is a direct function of the quality of its associated software development and maintenance processes?
A. The Software Capability Maturity Model (CMM)
B. The Spiral Model
C. The Waterfall Model
D. Expert Systems Model
问题 #27
Which of the following determines that the product developed meets the projects goals?
A. verification
B. validation
C. concurrence
D. accuracy
问题 #28
What is RAD?
A. A development methodology
B. A project management technique
C. A measure of system complexity
D. Risk-assessment diagramming
问题 #29
Which of the following best describes the purpose of debugging programs?
A. To generate random data that can be used to test programs before implementing them.
B. To ensure that program coding flaws are detected and corrected.
C. To protect, during the programming phase, valid changes from being overwritten by other changes.
D. To compare source code versions before transferring to the test environment
问题 #30
Which of the following is one of the oldest and most common problem in software development that is still very prevalent today?
A. Buffer Overflow
B. Social Engineering
C. Code injection for machine language
D. Unassembled reversible DOS instructions.
问题 #31
Which of the following is NOT true concerning Application Control?
A. It limits end users use of applications in such a way that only particular screens are visible.
B. Only specific records can be requested through the application controls
C. Particular usage of the application can be recorded for audit purposes
D. It is non-transparent to the endpoint applications so changes are needed to the applications and databases involved
问题 #32
The object-relational and object-oriented models are better suited to managing complex data such as required for which of the following?
A. computer-aided development and imaging
B. computer-aided duplexing and imaging
C. computer-aided processing and imaging
D. computer-aided design and imaging
问题 #33
Which of the following is not an element of a relational database model?
A. Relations, tuples, attributes and domains
B. Data Manipulation Language (DML) on how the data will be accessed and manipulated
C. Constraints to determine valid ranges and values
D. Security structures called referential validation within tables
问题 #34
A persistent collection of interrelated data items can be defined as which of the following?
A. database
B. database management system
C. database security
D. database shadowing
问题 #35
The description of the database is called a schema. The schema is defined by which of the following?
A. Data Control Language (DCL).
B. Data Manipulation Language (DML).
C. Data Definition Language (DDL).
D. Search Query Language (SQL).
问题 #36
Which of the following defines the software that maintains and provides access to the database?
A. database management system (DBMS)
B. relational database management system (RDBMS)
C. database identification system (DBIS)
D. Interface Definition Language system (IDLS)
问题 #37
Which of the following represents a relation, which is the basis of a relational database?
A. One-dimensional table
B. Two-dimensional table
C. Three-dimensional table
D. Four-dimensional table
问题 #38
Which of the following represents the rows of the table in a relational database?
A. attributes
B. records or tuples
C. record retention
D. relation
问题 #39
Which of the following can be defined as the set of allowable values that an attribute can take?
A. domain of a relation
B. domain name service of a relation
C. domain analysis of a relation
D. domains, in database of a relation
问题 #40
Which of the following can be defined as a unique identifier in the table that unambiguously points to an individual tuple or record in the table?
A. primary key
B. candidate key
C. secondary key
D. foreign key
问题 #41
Which of the following can be defined as THE unique attribute used as a unique identifier within a given table to identify a tuple?
A. primary key
B. candidate key
C. foreign key
D. secondary key
问题 #42
Which of the following can be defined as an attribute in one relation that has values matching the primary key in another relation?
A. foreign key
B. candidate key
C. primary key
D. secondary key
问题 #43
Referential Integrity requires that for any foreign key attribute, the referenced relation must have a tuple with the same value for which of the following?
A. primary key
B. secondary key
C. foreign key
D. candidate key
问题 #44
Matches between which of the following are important because they represent references from one relation to another and establish the connections among these relations?
A. foreign key to primary key
B. foreign key to candidate key
C. candidate key to primary key
D. primary key to secondary key
问题 #45
A database view is the results of which of the following operations?
A. Join and Select.
B. Join, Insert, and Project.
C. Join, Project, and Create.
D. Join, Project, and Select.
问题 #46
In regards to the query function of relational database operations, which of the following represent implementation procedures that correspond to each of the low-level operations in the query?
A. query plan
B. relational plan
C. database plan
D. structuring plan
问题 #47
In regards to relational database operations using the Structure Query Language (SQL), which of the following is a value that can be bound to a placeholder declared within an SQL statement?
A. A bind value
B. An assimilation value
C. A reduction value
D. A resolution value
问题 #48
Which of the following are placeholders for literal values in a Structured Query Language (SQL) query being sent to the database on a server?
A. Bind variables
B. Assimilation variables
C. Reduction variables
D. Resolution variables
问题 #49
Which of the following is an important part of database design that ensures that attributes in a table depend only on the primary key?
A. Normalization
B. Assimilation
C. Reduction
D. Compaction
问题 #50
Normalizing data within a database could include all or some of the following except which one?
A. Eliminate duplicative columns from the same table.
B. Eliminates functional dependencies on a partial key by putting the fields in a separate table from those that are dependent on the whole key
C. Eliminates Functional dependencies on non-key fields by putting them in a separate table. At this level, all non-key fields are dependent on the primary key.
D. Eliminating duplicate key fields by putting them into separate tables.
问题 #51
Which of the following is used to create and modify the structure of your tables and other objects in the database?
A. SQL Data Definition Language (DDL)
B. SQL Data Manipulation Language (DML)
C. SQL Data Relational Language (DRL)
D. SQL Data Identification Language (DIL)
问题 #52
SQL commands do not include which of the following?
A. Select, Update
B. Grant, Revoke
C. Delete, Insert
D. Add, Relist
问题 #53
Complex applications involving multimedia, computer aided design, video, graphics, and expert systems are more suited to which of the following database type?
A. Object-Oriented Databases (OODB)
B. Object-Relational Databases
C. Relational Databases
D. Database management systems (DBMS)
问题 #54
With regard to databases, which of the following has characteristics of ease of reusing code and analysis and reduced maintenance?
A. Object-Oriented Databases (OODB)
B. Object-Relational Databases (ORDB)
C. Relational Databases
D. Database management systems (DBMS)
问题 #55
Which of the following is the marriage of object-oriented and relational technologies combining the attributes of both?
A. object-relational database
B. object-oriented database
C. object-linking database
D. object-management database
问题 #56
What is used to hide data from unauthorized users by allowing a relation in a database to contain multiple tuples with the same primary keys with each instance distinguished by a security level?
A. Data mining
B. Polyinstantiation
C. Cell suppression
D. Noise and perturbation
问题 #57
Which of the following translates source code one command at a time for execution on a computer?
A. A translator
B. An interpreter
C. A compiler
D. An assembler
问题 #58
Which of the following is a Microsoft technology for communication among software components distributed across networked computers?
A. DDE
B. OLE
C. ODBC
D. DCOM
问题 #59
Which of the following statements relating to Distributed Computing Environment (DCE) is FALSE?
A. It is a layer of software that sits on the top of the network layer and provides services to the applications above it.
B. It uses a Universal Unique Identifier (UUID) to uniquely identify users, resources and components.
C. It provides the same functionality as DCOM, but it is more proprietary than DCOM.
D. It is a set of management services with a communication layer based on RPC.
问题 #60
Which virus category has the capability of changing its own code, making it harder to detect by anti-virus software?
A. Stealth viruses
B. Polymorphic viruses
C. Trojan horses
D. Logic bombs
问题 #61
Why would a database be denormalized?
A. To ensure data integrity
B. To increase processing efficiency
C. To prevent duplication of data
D. To save storage space
问题 #62
Which of the following BEST explains why computerized information systems frequently fail to meet the needs of users?
A. Inadequate quality assurance (QA) tools.
B. Constantly changing user needs.
C. Inadequate user participation in defining the system's requirements.
D. Inadequate project management.
问题 #63
Which of the following is an advantage in using a bottom-up versus a top-down approach to software testing?
A. Interface errors are detected earlier.
B. Errors in critical modules are detected earlier.
C. Confidence in the system is achieved earlier.
D. Major functions and processing are tested earlier.
问题 #64
Which of the following is an advantage of prototyping?
A. Prototype systems can provide significant time and cost savings.
B. Change control is often less complicated with prototype systems.
C. It ensures that functions or extras are not added to the intended system.
D. Strong internal controls are easier to implement.
问题 #65
Why do buffer overflows happen? What is the main cause?
A. Because buffers can only hold so much data
B. Because of improper parameter checking within the application
C. Because they are an easy weakness to exploit
D. Because of insufficient system memory
问题 #66
What is called the number of columns in a table?
A. Schema
B. Relation
C. Degree
D. Cardinality
问题 #67
Which of the following would not correspond to the number of primary keys values found in a table in a relational database?
A. Degree
B. Number of tuples
C. Cardinality
D. Number of rows
问题 #68
Which of the following represents the best programming?
A. Low cohesion, low coupling
B. Low cohesion, high coupling
C. High cohesion, low coupling
D. High cohesion, high coupling
问题 #69
Java is not:
A. Object-oriented.
B. Distributed.
C. Architecture Specific.
D. Multithreaded.
问题 #70
What are user interfaces that limit the functions that can be selected by a user called?
A. Constrained user interfaces
B. Limited user interfaces
C. Mini user interfaces
D. Unlimited user interfaces
问题 #71
Buffer overflow and boundary condition errors are subsets of which of the following?
A. Race condition errors.
B. Access validation errors.
C. Exceptional condition handling errors.
D. Input validation errors.
问题 #72
Which of the following does not address Database Management Systems (DBMS) Security?
A. Perturbation
B. Cell suppression
C. Padded cells
D. Partitioning
问题 #73
Which of the following phases of a software development life cycle normally addresses Due Care and Due Diligence?
A. Implementation
B. System feasibility
C. Product design
D. Software plans and requirements
问题 #74
Which of the following phases of a software development life cycle normally incorporates the security specifications, determines access controls, and evaluates encryption options?
A. Detailed design
B. Implementation
C. Product design
D. Software plans and requirements
问题 #75
In a database management system (DBMS), what is the "cardinality"?
A. The number of rows in a relation.
B. The number of columns in a relation.
C. The set of allowable values that an attribute can take.
D. The number of relations in a database.
问题 #76
Which of the following statements pertaining to software testing is incorrect?
A. Unit testing should be addressed and considered when the modules are being designed.
B. Test data should be part of the specifications.
C. Testing should be performed with live data to cover all possible situations.
D. Test data generators can be used to systematically generate random test data that can be used to test programs.
问题 #77
Which of the following is less likely to be included in the change control sub-phase of the maintenance phase of a software product?
A. Estimating the cost of the changes requested
B. Recreating and analyzing the problem
C. Determining the interface that is presented to the user
D. Establishing the priorities of requests
问题 #78
Sensitivity labels are an example of what application control type?
A. Preventive security controls
B. Detective security controls
C. Compensating administrative controls
D. Preventive accuracy controls
问题 #79
What is the act of obtaining information of a higher sensitivity by combining information from lower levels of sensitivity?
A. Polyinstantiation
B. Inference
C. Aggregation
D. Data mining
问题 #80
Which expert system operating mode allows determining if a given hypothesis is valid?
A. Blackboard
B. Lateral chaining
C. Forward chaining
D. Backward chaining
问题 #81
Why does compiled code pose more of a security risk than interpreted code?
A. Because malicious code can be embedded in compiled code and be difficult to detect.
B. If the executed compiled code fails, there is a chance it will fail insecurely.
C. Because compilers are not reliable.
D. There is no risk difference between interpreted code and compiled code.
问题 #82
Which of the following is not a defined maturity level within the Software Capability Maturity Model?
A. Repeatable
B. Defined
C. Managed
D. Oriented
问题 #83
Which software development model is actually a meta-model that incorporates a number of the software development models?
A. The Waterfall model
B. The modified Waterfall model
C. The Spiral model
D. The Critical Path Model (CPM)
问题 #84
Which of the following is used in database information security to hide information?
A. Inheritance
B. Polyinstantiation
C. Polymorphism
D. Delegation
问题 #85
Which model, based on the premise that the quality of a software product is a direct function of the quality of its associated software development and maintenance processes, introduced five levels with which the maturity of an organization involved in th
A. The Total Quality Model (TQM)
B. The IDEAL Model
C. The Software Capability Maturity Model
D. The Spiral Model
问题 #86
Which of the following characteristics pertaining to databases is NOT true?
A. A data model should exist and all entities should have a significant name.
B. Justifications must exist for normalized dat
A.
C. No NULLs should be allowed for primary keys.
D. All relations must have a specific cardinality.
问题 #87
Which of the following is best defined as a circumstance in which a collection of information items is required to be classified at a higher security level than any of the individual items that comprise it?
A. Aggregation
B. Inference
C. Clustering
D. Collision
问题 #88
In which of the following cloud computing service model are applications hosted by the service provider and made available to the customers over a network?
A. Software as a service
B. Data as a service
C. Platform as a service
D. Infrastructure as a service
问题 #89
Which of the following cloud computing service model provides a way to rent operating systems, storage and network capacity over the Internet?
A. Software as a service
B. Data as a service
C. Platform as a service
D. Infrastructure as a service
问题 #90
Which of the following cloud computing service model is a provision model in which an organization outsources the equipment used to support operations, including storage, hardware, servers and networking components?
A. Software as a service
B. Data as a service
C. Platform as a service
D. Infrastructure as a service
问题 #91
Which of the following cloud deployment model operates solely for an organization?
A. Private Cloud
B. Community Cloud
C. Public Cloud
D. Hybrid Cloud
问题 #92
Which of the following cloud deployment model can be shared by several organizations?
A. Private Cloud
B. Community Cloud
C. Public Cloud
D. Hybrid Cloud
问题 #93
Which of the following cloud deployment model is provisioned for open use by the general public?
A. Private Cloud
B. Community Cloud
C. Public Cloud
D. Hybrid Cloud
问题 #94
Of the various types of "Hackers" that exist, the ones who are not worried about being caught and spending time in jail and have a total disregard for the law or police force, are labeled as what type of hackers?
A. Suicide Hackers
B. Black Hat Hackers
C. White Hat Hackers
D. Gray Hat Hackers
问题 #95
Which of the following is NOT a transaction redundancy implementation?
A. on-site mirroring
B. Electronic Vaulting
C. Remote Journaling
D. Database Shadowing
问题 #96
Which of the following items is NOT a benefit of cold sites?
A. No resource contention with other organization
B. Quick Recovery
C. A secondary location is available to reconstruct the environment
D. Low Cost
问题 #97
Which of the following is NOT a common category/classification of threat to an IT system?
A. Human
B. Natural
C. Technological
D. Hackers
问题 #98
Which of the following teams should NOT be included in an organization's contingency plan?
A. Damage assessment team
B. Hardware salvage team
C. Tiger team
D. Legal affairs team
问题 #99
Which of the following statements pertaining to a Criticality Survey is incorrect?
A. It is implemented to gather input from all personnel that is going to be part of the recovery teams.
B. The purpose of the survey must be clearly stated.
C. Management's approval should be obtained before distributing the survey.
D. Its intent is to find out what services and systems are critical to keeping the organization in business.
问题 #100
System reliability is increased by:
A. A lower MTBF and a lower MTTR.
B. A higher MTBF and a lower MTTR.
C. A lower MTBF and a higher MTTR.
D. A higher MTBF and a higher MTTR.
闽公网安备 35012102500533号
|
闽ICP备18010967号-7