312-50 Exam Dumps - Certified Ethical Hacker Exam

Searching for workable clues to ace the ECCouncil 312-50 Exam? You’re on the right place! ExamCert has realistic, trusted and authentic exam prep tools to help you achieve your desired credential. ExamCert’s 312-50 PDF Study Guide, Testing Engine and Exam Dumps follow a reliable exam preparation strategy, providing you the most relevant and updated study material that is crafted in an easy to learn format of questions and answers. ExamCert’s study tools aim at simplifying all complex and confusing concepts of the exam and introduce you to the real exam scenario and practice it with the help of its testing engine and real exam dumps

Go to page:

<< First
Prev
1
2
3
4
5
6
7
8
9
Next
Last >>

Question # 33

Which security strategy requires using several, varying methods to protect IT systems against attacks?

Defense in depth

Three-way handshake

Covert channels

Exponential backoff algorithm

Full Access

Question # 34

Which of the following is an example of IP spoofing?

SQL injections

Man-in-the-middle

Cross-site scripting

ARP poisoning

Full Access

Question # 35

Which of the following is optimized for confidential communications, such as bidirectional voice and video?

RC4

RC5

MD4

MD5

Full Access

Question # 36

A network security administrator is worried about potential man-in-the-middle attacks when users access a corporate web site from their workstations. Which of the following is the best remediation against this type of attack?

Implementing server-side PKI certificates for all connections

Mandating only client-side PKI certificates for all connections

Requiring client and server PKI certificates for all connections

Requiring strong authentication for all DNS queries

Full Access

Question # 37

What is the primary drawback to using advanced encryption standard (AES) algorithm with a 256 bit key to share sensitive data?

Due to the key size, the time it will take to encrypt and decrypt the message hinders efficient communication.

To get messaging programs to function with this algorithm requires complex configurations.

It has been proven to be a weak cipher; therefore, should not be trusted to protect sensitive data.

It is a symmetric key algorithm, meaning each recipient must receive the key through a different channel than the message.

Full Access

Question # 38

Which of the following items is unique to the N-tier architecture method of designing software applications?

Application layers can be separated, allowing each layer to be upgraded independently from other layers.

It is compatible with various databases including Access, Oracle, and SQL.

Data security is tied into each layer and must be updated for all layers when any upgrade is performed.

Application layers can be written in C, ASP.NET, or Delphi without any performance loss.

Full Access

Question # 39

Company A and Company B have just merged and each has its own Public Key Infrastructure (PKI). What must the Certificate Authorities (CAs) establish so that the private PKIs for Company A and Company B trust one another and each private PKI can validate digital certificates from the other company?

Poly key exchange

Cross certification

Poly key reference

Cross-site exchange

Full Access

Question # 40

Which of the following is a primary service of the U.S. Computer Security Incident Response Team (CSIRT)?

CSIRT provides an incident response service to enable a reliable and trusted single point of contact for reporting computer security incidents worldwide.

CSIRT provides a computer security surveillance service to supply a government with important intelligence information on individuals travelling abroad.

CSIRT provides a penetration testing service to support exception reporting on incidents worldwide by individuals and multi-national corporations.

CSIRT provides a vulnerability assessment service to assist law enforcement agencies with profiling an individual's property or company's asset.

Full Access

Go to page: