Joe is the manager of the network administration group. He has been told thatone of the systems working in dedicated security mode has been configured to allowsensitive information to pass to a system working in multilevel security mode. Whatsolution should he offer his team to implement?

Bob needs to implement role-based access control (RBAC) within his company. Hehas learned that there are several approaches to RBAC. He needs to ensure that usersPage 2cess trol-P5.txtare mapped to multiple roles and mapped directly to other types of applications thatdo not have role-based access functionality. Which of the following should Bob choseto implement?

Dan is a senior manager within the security department of his company. He needsto make a purchasing decision of the type of access control products that should beimplemented. The product that is purchased needs to ensure that managers can accessa portion of a file or folder, but not others. What type of access control does this refer to?

Which of the following is a correct definition mapping?

i.DAC Data owners decide who has access to resources, and ACLs are used to enforcethe security policy.
ii. MAC Operating systems enforce the system’s security policy through the use ofsecurity labels.
iii. RBAC Access decisions are based on each subject’s role and/or functionalposition.

Which of the following describes the discrepancies in the following statement?"a TCP connection, the sender sends an SYN packet, the receiver sends an ACK, andthen the sender acknowledges that packet with an ACK packet."

Which of the following are used in an attack detected by an IDS?

Which of the following is not a way that clients can authenticate to servers in a client\server model?

What is the purpose of clipping levels?

Batch files and scripts should be stored in a protected area. Why is this?

Tom’s environment has RADIUS servers that authenticate remote users before beingallowed access to network resources. He has been asked for a solution to allow forauthentication of the employee’s smart phones, which cannot work with RADIUS. Tom needs a AAA protocol that is designed for cell phone usage. What type of solutionshould Tom suggest?