200-201 Exam Dumps - Understanding Cisco Cybersecurity Operations Fundamentals (CBROPS)

Integrity is a metric in CVSS that measures the impact of a vulnerability on the trustworthiness and veracity of the data or information in a system. A vulnerability that affects the integrity of a system can allow an attacker to modify, delete, or corrupt the data or information without authorization. An example of such a vulnerability is a bank account number tampering attack, where an attacker changes the destination bank account number of a transaction to redirect the funds to their own account. References: Understanding Cisco Cybersecurity Operations Fundamentals (CBROPS) - Cisco, page 2-17; 200-201 CBROPS - Cisco, exam topic 1.3.c

 In RBAC, access is based on the roles that users have within an organization, and permissions to perform certain operations are assigned to specific roles. DAC, on the other hand, is a type of access control where the access rights are determined by the owner of the resource or the resource itself.

A network TAP (Test Access Point) is a hardware device designed to create an exact, full-fidelity copy of network traffic for monitoring and packet analysis. TAPs operate at the physical layer and replicate all packets—including errors and malformed frames—without dropping traffic.

This makes TAPs ideal for packet sniffing, intrusion detection, and forensic analysis where accuracy and completeness are critical. TAPs do not rely on switch resources and do not introduce packet loss during periods of high traffic.

SPAN (mirror) ports can also copy traffic but are dependent on switch processing capacity and may drop packets during congestion, making them unreliable for full-fidelity capture. NAT modifies traffic, and tunneling encapsulates data rather than copying it.

Cybersecurity operations documentation consistently identifies TAPs as the preferred solution when exact traffic replication is required.

Therefore, the correct answer is tap.

Traffic with a known TOR exit node is often associated with data exfiltration, where sensitive information is transferred from within the network to an external location. TOR networks are used to anonymize the traffic, making it difficult to trace back to the source. References := Cisco Cybersecurity Operations Fundamentals - Module 2: Security Monitoring

 The log in the exhibit is generated by an Intrusion Prevention System (IPS) or Intrusion Detection System (IDS). It contains information about a TCP connection attempt, including the source IP address, destination IP address, and other details related to the connection. The presence of “TCP MISS” indicates that the system detected an anomaly or potential threat during the connection attempt. References := Cisco Cybersecurity Operations Fundamentals