Testking comptia sy0-101

SECURITY+ CERTIFICATION EXAM: sy0-101 Exam
Exam Number/Code: sy0-101
Exam Name: SECURITY+ CERTIFICATION EXAM

“SECURITY+ CERTIFICATION EXAM”, also known as sy0-101 exam, is a comptia certification.
Preparing for the sy0-101 exam? Searching sy0-101 Test Questions, sy0-101 Practice Exam, sy0-101 Dumps?

download Interactive Free sy0-101 Testing engines Demo Download

Testking offers free demo for sy0-101 exam ( SECURITY+ CERTIFICATION EXAM). You can check out the interface, question quality and usability of our practice exams before you decide to buy it. We are the only one site can offer demo for almost all products.

comptia sy0-101 Exact Exams
Exact Exam is offering quality study material for comptia real sy0-101 exam. Testking GUARANTEES that you will pass your comptia sy0-101 exam on your first attempt after using their comptia sy0-101 simulator training products.

comptia sy0-101 Actual Exams
Actual Exams provide you with best tools that can help you to get well prepared for comptia sy0-101 certification exam. Actual Exams study material available for the preparation of comptia sy0-101 torrent is of excellent quality and can lead you to success.

100% Guarantee to Pass Your sy0-101 Exam

Free sy0-101 Exams’s PDF vce Download

comptia sy0-101 Q & A with Explanations
comptia sy0-101 Audio Exam
comptia sy0-101 Study Guide
comptia sy0-101 Preparation Lab
comptia sy0-101 Value Pack
comptia sy0-101 rapidshare 4shared books link

Why choose Testking sy0-101 braindumps

Quality and Value for the sy0-101 Exam
100% Guarantee to Pass Your sy0-101 Exam
Downloadable, Interactive sy0-101 Testing engines
Verified Answers Researched by Industry Experts
Drag and Drop questions as experienced in the Actual Exams
Practice Test Questions accompanied by exhibits
Our Practice Test Questions are backed by our 100% MONEY BACK GUARANTEE.

Question: 1
Which of the following is NOT a valid access control mechanism?
A. DAC (Discretionary Access Control) list.
B. SAC (Subjective Access Control) list.
C. MAC (Mandatory Access Control) list.
D. RBAC (Role Based Access Control) list.
Answer: B
Explanation:
The three basic access control mechanisms are: MAC (Mandatory Access Control), DAC
(Discretionary Access Control) and RBAC (Role Based Access Control). There is no SAC
(Subjective Access Control) list.
Incorrect Answers:
C: The three basic access control mechanisms are: MAC (Mandatory Access Control), DAC
(Discretionary Access Control) and RBAC (Role Based Access Control). MAC is based on
predefined access privileges to a resource.
A: The three basic access control mechanisms are: MAC (Mandatory Access Control), DAC
(Discretionary Access Control) and RBAC (Role Based Access Control). DAC is based on the
owner of the resource allowing other users access to that resource.
D: The three basic access control mechanisms are: MAC (Mandatory Access Control), DAC
(Discretionary Access Control) and RBAC (Role Based Access Control). RBAC is based on the
role or responsibilities users have in the organization.
References:
Michael Cross, Norris L. Johnson, Jr. and Tony Piltzecker, Security+ Study Guide and DVD
Training System, Rockland, MA, Syngress, 2002, pp. 8-10.
Mike Pastore and Emmett Dulaney, Security+ Study Guide, 2nd Edition, Alameda, Sybex, 2004,
p. 13.
Question: 2
Which of the following best describes an access control mechanism in which access control
decisions are based on the responsibilities that an individual user or process has in an
organization?
A. MAC (Mandatory Access Control)
B. RBAC (Role Based Access Control)
C. DAC (Discretionary Access Control)
D. None of the above.
Answer: B
Explanation:
Access control using the RBAC model is based on the role or responsibilities users have in the
organization.
These usually reflect the organization’s structure and can be implemented system wide.
Incorrect Answers:
A: Access control using the MAC model is based on predefined access privileges to a resource.
C: Access control using the DAC model is based on the owner of the resource allowing other
users access to that resource.
D: Access control using the RBAC model is based on the role or responsibilities users have in the
organization.
References:
Michael Cross, Norris L. Johnson, Jr. and Tony Piltzecker, Security+ Study Guide and DVD
Training System, Rockland, MA, Syngress, 2002, pp. 8-10.
Mike Pastore and Emmett Dulaney, Security+ Study Guide, 2nd Edition, Alameda, Sybex, 2004,
p. 13.
Question: 3
Which of the following best describes an access control mechanism that allows the data owner to
create and administer access control?
A. MACs (Mandatory Access Control)
B. RBACs (Role Based Access Control)
C. LBACs (List Based Access Control)
D. DACs (Discretionary Access Control)
Answer: D
Explanation:
The DAC model allows the owner of a resource to control access privileges to that resource. This
model is dynamic in nature and allows the owner of the resource to grant or revoke access to
individuals or groups of individuals.
Incorrect Answers:
A: Access control using the MAC model is based on predefined access privileges to a resource.
B: Access control using the RBAC model is based on the role or responsibilities users have in the
organization.
C: Access control using the LBAC model is based on a list of users and the privileges they have
been granted to an object. This list is usually created by the administrator.
References:
Michael Cross, Norris L. Johnson, Jr. and Tony Piltzecker, Security+ Study Guide and DVD
Training System, Rockland, MA, Syngress, 2002, pp. 8-10, 668.
Mike Pastore and Emmett Dulaney, Security+ Study Guide, 2nd Edition, Alameda, Sybex, 2004,
p. 13.
Question: 4
Which of the following is an inherent flaw in the DAC (Discretionary Access Control) model?
A. DAC (Discretionary Access Control) relies only on the identity of the user or process, leaving
room for a Trojan horse.
B. DAC (Discretionary Access Control) relies on certificates, allowing attackers to use those
certificates.
C. DAC (Discretionary Access Control) does not rely on the identity of a user, allowing anyone
to use an account.
D. DAC (Discretionary Access Control) has no known security flaws.
Answer: A
Explanation:
The DAC model is more flexible than the MAC model. It allows the owner of a resource to control
access privileges to that resource. Thus, access control is entirely at the digression of the owner,
as is the resource that is shared. In other words, there are no security checks to ensure that
malicious code is not made available for sharing.
References:
Michael Cross, Norris L. Johnson, Jr. and Tony Piltzecker, Security+ Study Guide and DVD
Training System, Rockland, MA, Syngress, 2002, p. 720.
Mike Pastore and Emmett Dulaney, Security+ Study Guide, 2nd Edition, Alameda, Sybex, 2004,
p. 393.
Question: 5
Which of the following access control methods provides the most granular access to protected
objects?
A. Capabilities
B. Access control lists
C. Permission bits
D. Profiles
Answer: B
Explanation:
Access control lists enable devices in your network to ignore requests from specified users or
systems, or grant certain network capabilities to them. ACLs allow a stronger set of access
controls to be established in your network. The basic process of ACL control allows the
administrator to design and adapt the network to deal with specific security threats.
References:
Mike Pastore and Emmett Dulaney, Security+ Study Guide, 2nd Edition, Alameda, Sybex, 2004,
pp. 13, 216, 219

Testking sy0-101
Questions and Answers : 600 Q&As Updated: October 1st , 2008 SoftWare: $125.99 HardCopy: $19.99

More info: Testking sy0-101
More info: Pass4sure sy0-101

Free certification braindumps

Type	Exam Bible	New Questions & Answers	Latest Updated	Download link
	All Certbible 's Exam Pack	397	5 days ago	Available www.actualtest.org