PrepAway - Latest Free Exam Questions & Answers

what way can violation of clipping levels assist in vio…

In what way can violation of clipping levels assist in violation tracking and analysis?

PrepAway - Latest Free Exam Questions & Answers

A.
Clipping levels set a baseline for acceptable normal user errors, and violations exceeding that threshold will
be recorded for analysis of why the violations occurred.

B.
Clipping levels enable a security administrator to customize the audit trail to record only those violations
which are deemed to be security relevant.

C.
Clipping levels enable the security administrator to customize the audit trail to record only actions for users
with access to user accounts with a privileged status.

D.
Clipping levels enable a security administrator to view all reductions in security levels which have been
made to user accounts which have incurred violations.

Explanation:
Companies can set predefined thresholds for the number of certain types of errors that will be allowed before
the activity is considered suspicious. The threshold is a baseline for violation activities that may be normal for a
user to commit before alarms are raised. This baseline is referred to as a clipping level.
Organizations usually forgive a particular type, number, or pattern of violations, thus permitting a predetermined
number of user errors before gathering this data for analysis. An organization attempting to track all violations,
without sophisticated statistical computing ability, would be unable to manage the sheer quantity of such data.
To make a violation listing effective, a clipping level must be established.
Any violations recorded after the clipping level threshold is reached can be used to assist in violation tracking
and analysis.
Incorrect Answers:
B: Clipping levels do not enable a security administrator to customize the audit trail to record only those
violations which are deemed to be security relevant. You would not record ONLY security relevant violations;
when the number of violations reaches a defined threshold (the clipping level), all further violations would be
recorded.
C: Clipping levels do not enable the security administrator to customize the audit trail to record only actions for
users with access to user accounts with a privileged status. All violations (after the clipping level has been
reached) are recorded whether the user is a normal user or a privileged user.
D: Clipping levels do not enable a security administrator to view all reductions in security levels which have
been made to user accounts which have incurred violations. This is not the function of clipping levels.


Leave a Reply