Title:  CompTIA Security+ 2008 Edition questions

Description:
This certification validates knowledge of systems security, network infrastructure, access control, assessments and audits, cryptography and organizational security. It is an international, vendor-neutral security certification that is taught at colleges, universities and commercial training centers around the world.

Recommendation
    *  Two years of technical experience in networking with emphasis on security
    * Adequate training and self-study
    * CompTIA Network+ recommended, but not required

Number of questions:  12 questions

Has explanations:  Yes

Objectives:

1. Section 1: Declarations, Initialization and Scoping
2. Section 2: Flow Control
3. API Contents
4. Section 4: Concurrency
5. Section 5: OO Concepts
6. General Security Concepts 30%
7. Communication Security 20%
8. Infrastructure Security 20%
9. Basics of Cryptography 15%
10. Operational / Organizational Security 15%

What are features of CHAP protocols? (select two or more choices)

Answer(s)

• CHAP provides protection against playback attack by the peer
• CHAP requires that both the client and server know the plaintext of the secret
• Require the client to authenticate itself at startup time
• Using CHAP, client authenticates itself by sending a user name and an (optionally encrypted) password to the server
• Does not protect against session hijacking (eavesdroppers)

Correct Answer

• CHAP provides protection against playback attack by the peer
• CHAP requires that both the client and server know the plaintext of the secret