Pass Exam With Full Sureness - 312-38 Dumps with 171 Questions
Verified 312-38 dumps Q&As - 100% Pass from ExamsReviews
NEW QUESTION 51
Which of the following is a credit card-sized device used to securely store personal information and used in conjunction with a PIN number to authenticate users?
- A. Java card
- B. Proximity card
- C. SD card
- D. Smart card
Answer: D
Explanation:
A smart card is a credit card-sized device used to securely store personal information such as certificates, public and private keys, passwords, etc. It is used in conjunction with a PIN number to authenticate users. In Windows, smart cards are used to enable certificate-based authentication. To use smart cards, Extensible Authentication Protocol (EAP) must be configured in Windows. Answer option B is incorrect. Java Card is a technology that allows Java-based applications to be run securely on smart cards and small memory footprint devices. Java Card gives a user the ability to program devices and make them application specific. It is widely used in SIM cards and ATM cards. Java Card products are based on the Java Card Platform specifications developed by Sun Microsystems, a supplementary of Oracle Corporation. Many Java card products also rely on the global platform specifications for the secure management of applications on the card. The main goals of the Java Card technology are portability and security. Answer option A is incorrect. Proximity card (or Prox Card) is a generic name for contactless integrated circuit devices used for security access or payment systems. It can refer to the older 125 kHz devices or the newer 13.56 MHz contactless RFID cards, most commonly known as contactless smartcards.Modern proximity cards are covered by the ISO/IEC 14443 (Proximity Card) standard. There is also a related ISO/IEC 15693 (Vicinity Card) standard. Proximity cards are powered by resonant energy transfer and have a range of 0-3 inches in most instances. The user will usually be able to leave the card inside a wallet or purse. The price of the cards is also low, usually US$2-$5, allowing them to be used in applications such as identification cards, keycards, payment cards and public transit fare cards. Answer option C is incorrect. Secure Digital (SD) card is a non-volatile memory card format used in portable devices such as mobile phones, digital cameras, and handheld computers. SD cards are based on the older MultiMediaCard (MMC) format, but they are a little thicker than MMC cards. Generally an SD card offers a write-protect switch on its side. SD cards generally measure 32 mm x 24 mm x 2.1 mm, but they can be as thin as 1.4 mm. The devices that have SD card slots can use the thinner MMC cards, but the standard SD cards will not fit into the thinner MMC slots. Some SD cards are also available with a USB connector. SD card readers allow SD cards to be accessed via many connectivity ports such as USB, FireWire, and the common parallel port.
NEW QUESTION 52
Which of the following protocols is used in wireless networks?
- A. CSMA/CD
- B. CSMA
- C. CSMA/CA
- D. ALOHA
Answer: C
NEW QUESTION 53
Identify the minimum number of drives required to setup RAID level 5.
Multiple
- A. 0
- B. 1
- C. 2
Answer: A
NEW QUESTION 54
CSMA/CD is specified in which of the following IEEE standards?
- A. 802.2
- B. 802.3
- C. 802.1
- D. 802.15
Answer: B
NEW QUESTION 55
Which of the following IP addresses is the loopback address in IPv6?
- A. 1:0:0:0:0:0:0:0
- B. 0:0:0:0:0:0:0:0
- C. 0:0:0:1:1:0:0:0
- D. 0:0:0:0:0:0:0:1
Answer: D
NEW QUESTION 56
Adam, a malicious hacker, has just succeeded in stealing a secure cookie via a XSS attack. He is able to replay the cookie even while the session is valid on the server. Which of the following is the most likely reason of this cause?
- A. Encryption is performed at the application layer (single encryption key).
- B. Two way encryption is applied.
- C. No encryption is applied.
- D. Encryption is performed at the network layer (layer 1 encryption).
Answer: A
Explanation:
Single key encryption uses a single word or phrase as the key. The same key is used by the sender to encrypt and the receiver to decrypt. Sender and receiver initially need to have a secure way of passing the key from one to the other. With TLS or SSL this would not be possible. Symmetric encryption is a type of encryption that uses a single key to encrypt and decrypt data. Symmetric encryption algorithms are faster than public key encryption. Therefore, it is commonly used when a message sender needs to encrypt a large amount of data. Data Encryption Standard (DES) uses the symmetric encryption key algorithm to encrypt data.
NEW QUESTION 57
Which of the following key features limits the rate a sender transfers data to guarantee reliable delivery?
- A. Ordered data transfer
- B. Error-free data transfer
- C. Flow control
- D. Congestion control
Answer: C
NEW QUESTION 58
CORRECT TEXT
Fill in the blank with the appropriate term. The ______________layer establishes, manages, and terminates the connections between the local and remote application.
Answer:
Explanation:
session
Explanation:
The session layer of the OSI/RM controls the dialogues (connections) between computers. It establishes, manages and terminates the connections between the local and remote application. It provides for full-duplex, half-duplex, or simplex operation, and establishes checkpointing, adjournment, termination, and restart procedures. The OSI model made this layer responsible for graceful close of sessions, which is a property of the Transmission Control Protocol, and also for session check pointing and recovery, which is not usually used in the Internet Protocol Suite. The Session Layer is commonly implemented explicitly in application environments that use remote procedure calls.
NEW QUESTION 59
Which of the following is a standard-based protocol that provides the highest level of VPN security?
- A. L2TP
- B. IP
- C. PPP
- D. IPSec
Answer: D
Explanation:
Internet Protocol Security (IPSec) is a standard-based protocol that provides the highest level of VPN security. IPSec can encrypt virtually everything above the networking layer. It is used for VPN connections that use the L2TP protocol. It secures both data and password. IPSec cannot be used with Point-to-Point Tunneling Protocol (PPTP). Answer option B is incorrect. The Internet Protocol (IP) is a protocol used for communicating data across a packet-switched inter-network using the Internet Protocol Suite, also referred to as TCP/IP.IP is the primary protocol in the Internet Layer of the Internet Protocol Suite and has the task of delivering distinguished protocol datagrams (packets) from the source host to the destination host solely based on their addresses. For this purpose, the Internet Protocol defines addressing methods and structures for datagram encapsulation. The first major version of addressing structure, now referred to as Internet Protocol Version 4 (IPv4), is still the dominant protocol of the Internet, although the successor, Internet Protocol Version 6 (IPv6), is being deployed actively worldwide. Answer option C is incorrect. Point-to-Point Protocol (PPP) is a remote access protocol commonly used to connect to the Internet. It supports compression and encryption and can be used to connect to a variety of networks. It can connect to a network running on the IPX, TCP/IP, or NetBEUI protocol. It supports multi-protocol and dynamic IP assignments. It is the default protocol for the Microsoft Dial-Up adapter. Answer option A is incorrect. Layer 2 Tunneling Protocol (L2TP) is a more secure version of Point-to-Point Tunneling Protocol (PPTP). It provides tunneling, address assignment, and authentication. It allows the transfer of Point-to-Point Protocol (PPP) traffic between different networks.L2TP combines with IPSec to provide tunneling and security for Internet Protocol (IP), Internetwork Packet Exchange (IPX), and other protocol packets across IP networks.
NEW QUESTION 60
Which of the following tools is a free laptop tracker that helps in tracking a user's laptop in case it gets stolen?
- A. Nessus
- B. Snort
- C. SAINT
- D. Adeona
Answer: D
Explanation:
Adeona is a free laptop tracker that helps in tracking a user's laptop in case it gets stolen. All it takes is to install the Adeona software client on the user's laptop, pick a password, and make it run in the background. If at one point, the user's laptop gets stolen and is connected to the Internet, the Adeona software sends the criminal's IP address. Using the Adeona Recovery, the IP address can then be retrieved. Knowing the IP address helps in tracking the geographical location of the stolen device. Answer option D is incorrect. Nessus is proprietary comprehensive vulnerability scanning software. It is free of charge for personal use in a non-enterprise environment. Its goal is to detect potential vulnerabilities on tested systems. It is capable of checking various types of vulnerabilities, some of which are as follows:Vulnerabilities that allow a remote cracker to control or access sensitive data on a system Misconfiguration (e.g. open mail relay, missing patches, etc)Default passwords, a few common passwords, and blank/absent passwords on some system accounts. Nessus can also call Hydra (an external tool) to launch a dictionary attack.Denials of service against the TCP/IP stack by using mangled packets Answer option A is incorrect. SAINT stands for System Administrator's Integrated Network Tool. It is computer software used for scanning computer networks for security vulnerabilities, and exploiting found vulnerabilities. The SAINT scanner screens every live system on a network for TCP and UDP services. For each service it finds running, it launches a set of probes designed to detect anything that could allow an attacker to gain unauthorized access, create a denial-ofservice, or gain sensitive information about the network. Answer option C is incorrect. Snort is an open source network intrusion detection system. The Snort application analyzes network traffic in realtime mode. It performs packet sniffing, packet logging, protocol analysis, and a content search to detect a variety of potential attacks.
NEW QUESTION 61
Which of the following are provided by digital signatures?
- A. Authentication and identification
- B. Security and integrity
- C. Identification and validation
- D. Integrity and validation
Answer: A
NEW QUESTION 62
In which of the following transmission modes is data sent and received alternatively?
- A. Bridge mode
- B. Simplex mode
- C. Full-duplex mode
- D. Half-duplex mode
Answer: D
NEW QUESTION 63
FILL BLANK
Fill in the blank with the appropriate term. ______________ is the use of sensitive words in e-mails to jam the
authorities that listen in on them by providing a form of a red herring and an intentional annoyance.
Answer:
Explanation:
Email jamming
Explanation: Email jamming is the use of sensitive words in e-mails to jam the authorities that listen in on them
by providing a form of a red herring and an intentional annoyance. In this attack, an attacker deliberately
includes "sensitive" words and phrases in otherwise innocuous emails to ensure that these are picked up by
the monitoring systems. As a result the senders of these emails will eventually be added to a "harmless" list
and their emails will be no longer intercepted, hence it will allow them to regain some privacy.
NEW QUESTION 64
Which of the following protocols is described as a connection-oriented and reliable delivery transport layer protocol?
- A. IP
- B. SSL
- C. UDP
- D. TCP
Answer: D
NEW QUESTION 65
Which of the following encryption techniques do digital signatures use?
- A. Blowfish
- B. MD5
- C. IDEA
- D. RSA
Answer: B
NEW QUESTION 66
Harry has sued the company claiming they made his personal information public on a social networking site in the United States. The company denies the allegations and consulted a/an ______for legal advice to defend them against this allegation.
- A. Incident Handler
- B. Evidence Manager
- C. Attorney
- D. PR Specialist
Answer: C
NEW QUESTION 67
Adam works as a Security Analyst for Umbrella Inc. The company has a Linux-based network comprising an Apache server for Web applications. He received the following Apache Web server log, which is as follows:
[Sat Nov 16 14:32:52 2009] [error] [client 128.0.0.7] client denied by server configuration: /export/home/htdocs/ test The first piece in the log entry is the date and time of the log message. The second entry determines the severity of the error being reported.
Now Adam wants to change the severity level to control the types of errors that are sent to the error log. Which of the following directives will Adam use to accomplish the task?
- A. LogLevel
- B. LogFormat
- C. ErrorLog
- D. CustomLog
Answer: A
Explanation:
The LogLevel directive is used in server Error log of the Apache Web server log. This directive is used to control the types of errors that are sent to the error log by constraining the severity level. Eight different levels are present in the LogLevel directive, which are shown below in order of their descending significance:
Note: When a certain level is specified, the messages from all other levels of higher significance will also be reported. For example, when LogLevel crit is specified, then messages with log levels of alert and emerg will also be reported.
Answer option B is incorrect. The ErrorLog directive is used to set the name and location of the file to which the server will log any errors it encounters. If the file-path does not begin with a slash sign (/), it is assumed to be relative to the ServerRoot. If the file-path begins with a pipe sign (|), then it is assumed to be a command that handles the error log.
Answer option A is incorrect. The CustomLog directive is used to log requests to the server. The format of the log is specified and the logging can be made conditional on request characteristics with the help of environment variables. Environment variables can be adjusted on a per-request basis with the help of the mod_setenvif or mod_rewrite module.
Answer option C is incorrect. The LogFormat directive can exist in one of the two forms. In the first form, only one argument is specified; and in the second form explicit format with a nickname is associated. This directive specifies the log format that is used by logs specified in subsequent TransferLog directives.
NEW QUESTION 68
......
Recommended Training
So, let’s focus on the recommended online course for the CND 312-38 validation:
- Certified Network Defender (CND)
The EC-Council offers one course with a corresponding name to help candidates study for the official 312-38 exam. This is the Certified Network Defender or CND training, which is an intensive, hands-on program that focuses on network security and other similar concepts. As a labor-intensive training that aligns with the latest skills, this class has been reorganized to reflect the current job roles and responsibilities of network administrators. It is intended to prepare candidates for advanced roles in this field by confirming their expertise in risk mitigation. With almost half of the course built around hands-on lab lessons, this program will be a vital tool to help you understand the learning objectives including endpoint protection, application & data protection, network perimeter protection, network defense management, and threat prediction among other skills. It’s worth mentioning that this training also includes three demo videos to help candidates gain a good grasp of the test details. These sections include the CND with Eric Reed, CND Meet Your Instructor, and iLabs Demo. Get the complete package today for $1,899 and validate your skills in the best way, and if you are still wondering what the full package contains, find the whole list below:
- Official e-courseware (12-month access);
- Instructor-led training modules (12-month access);
- iLabs (6-month access);
- Certificate of completion;
- Exam voucher.
EC-Council CND Exam Certification Details:
| Exam Name | EC-Council Certified Network Defender (CND) |
| Passing Score | 70% |
| Number of Questions | 100 |
| Schedule Exam | Pearson VUE OR ECC Exam Center |
312-38 Dumps Full Questions - Exam Study Guide: https://www.examsreviews.com/312-38-pass4sure-exam-review.html
Pass 312-38 Exam in First Attempt Guaranteed 2022 Dumps: https://drive.google.com/open?id=1P0X3y6ecD9OWG1OSpK5bS-kacv_lDcyN