In the fields of physical security and information security,access control is the selective restriction of access to a place or other resource.The act of accessing may mean consuming,entering,or using.Permission to access a resource is called authorizatio

第1题：

Which two statements apply to dynamic access lists？（）

• A、they offer simpler management in large internetworks.
• B、you can control logging messages.
• C、they allow packets to be filtered based on upper-layer session information.
• D、you can set a time-based security policy.
• E、they provide a level of security against spoofing.
• F、they are used to authenticate individual users

第2题：

What is the goal of the borderless network architecture?（）

• A、to provide users with A single device that permits access to information anywhere
• B、to provide users with the same productivity and access to information no matter where are or which device they use
• C、to eliminate the need for border security and firewalls
• D、to provide companies with A way to extend their security and control over employees on the internet

第3题：

When determining a customer’s security requirements using the security site survey from the steps for success methodology， which three of theses should be included in the customer’s security policy and procedures？（）

• A、Third-party due diligence policy review
• B、Remote Access Policy
• C、Encryption Policy
• D、Application change control policy
• E、Security Personnel policy

第4题：

You are the administrator of your company’s network. Ten Windows 2000 Professional computers are located in the Research department. The computers contain highly confidential information. You want the 10 computers to be able to communicate with other Windows 2000 Professional computers on the network. However, you do not want them to communicate with computers that are not running Windows 2000, including those that are running Windows 95, Windows 98 and Windows NT.  You want to configure a security policy on each computer to ensure that the confidential information is secure. What should you do?（）

• A、Use Security Configuration and Analysis to import the Hisecws.inf security template file to modify the default security settings.
• B、Use security templates to create a security template file and import the security settings to modify the default security settings.
• C、Use the local computer policy to disable the access to this computer from the network option.
• D、Use Secedit.exe to reconfigure the computers’ default security settings to not allow anonymous access to the computers.

第5题：

第6题：

第7题：

第8题：

第9题：

第10题：

第11题：

What are two benefits of integrating Junos Pulse Access Control Service with Security Threat Response Manager (STRM)?（）

• A、The ability to detect and prevent malicious traffic.
• B、The ability to associate security breaches with a specific user.
• C、Converged management of network and security events, network flow data, and identity information.
• D、Consistent device management across administrative realms.

第12题：

What is the goal of the borderless network architecture?（）

• A、to provide users withA single device that permits access to information anywhere
• B、to provide users with the same productivity and access to information no matter where are or which device they use
• C、to eliminate the need for border security and firewalls
• D、to provide companies withA way to extend their security and control over employees on the internet

第13题：

The root id is set so that direct login is disabled.  Information must be reviewed relating to when root access was obtained.  In which of the following files is this information located?（）

• A、 /var/adm/sulog 
• B、 /var/adm/wtmp 
• C、 /etc/security/user 
• D、 /etc/security/failedlogin

第14题：

You are a professional level SQL Sever 2008 Database Administrator in an international corporation named Wiikigo. You are experienced in managing databases in an enterprise-level organization, optimizing and sustaining the database life cycle. In the company, your job is to implement solutions on security, troubleshooting, deployment and optimization. A SQL Server 2008 instance is managed by you. The security requirements should be designed for a new database application. A code segment is utilized by the application, and the code segment includes the following components: A method that the registry is accessed on the SQL Server, a method that the file system is accessed on a network file server, and a class definition that public static fields are utilized. SQL CLR integration is utilized by the code segment, and the code segment is implemented as a single assembly. Since you are the technical support, you are required to make sure that the application should be successfully deployed to the instance.    Which action will you perform?（）

• A、The SAFE code access security should be utilized for the assembly.
• B、All public static fields should be replaced with public fields.
• C、All public static fields should be utilized with public static read-only fields. And then the assembly shouldbe registered by utilizing the regasm.exe utility before deployment.
• D、All public static fields should be replaced with public static read-only fields. And then the EXTERNAL_ACCESS code access security should be utilized for the assembly.

第15题：

第16题：

第17题：

第18题：

第19题：

第20题：