CompTIA
SY0-501
CompTIA Security+
Certification Exam
Version: Demo
[ Total Questions: 10]
Web: www.dumpscafe.com
Email: support@dumpscafe.com
IMPORTANT NOTICE
Feedback
We have developed quality product and state-of-art service to ensure our customers interest. If you have any
suggestions, please feel free to contact us at feedback@dumpscafe.com
Support
If you have any questions about our product, please provide the following items:
exam code
screenshot of the question
login id/email
please contact us at support@dumpscafe.com and our technical experts will provide support within 24 hours.
Copyright
The product of each order has its own encryption code, so you should use it independently. Any unauthorized
changes will inflict legal punishment. We reserve the right of final explanation for this statement.
Pass Exam
CompTIA - SY0-501
Exam Topic Breakdown
Exam Topic
Number of Questions
Topic 1 : Exam Pool A
2
Topic 3 : Exam Pool C
2
Topic 4 : Exam Pool D
2
Topic 2 : Exam Pool B
2
Topic 6 : Exam Pool F (New Questions)
2
Topic 5 : Exam Pool E
0
TOTAL
10
Verified Solution - 100% Result
1 of 7
Pass Exam
CompTIA - SY0-501
Topic 1, Exam Pool A
Question #:1 - (Exam Topic 1)
Which of the following encryption methods does PKI typically use to securely project keys?
A. Elliptic curve
B. Digital signatures
C. Asymmetric
D. Obfuscation
Answer: C
Question #:2 - (Exam Topic 1)
Which of the following best describes routine in which semicolons, dashes, quotes, and commas are removed
from a string?
A. Error handling to protect against program exploitation
B. Exception handling to protect against XSRF attacks.
C. Input validation to protect against SQL injection.
D. Padding to protect against string buffer overflows.
Answer: C
Verified Solution - 100% Result
2 of 7
Pass Exam
CompTIA - SY0-501
Topic 3, Exam Pool C
Question #:3 - (Exam Topic 3)
The data backup window has expanded into the morning hours and has begun to affect production users. The
main bottleneck in the process is the time it takes to replicate the backups to separate severs at the offsite data
center. Which of the following uses of deduplication could be implemented to reduce the backup window?
A. Implement deduplication at the network level between the two locations
B. Implement deduplication on the storage array to reduce the amount of drive space needed
C. Implement deduplication on the server storage to reduce the data backed up
D. Implement deduplication on both the local and remote servers
Answer: B
Question #:4 - (Exam Topic 3)
An administrator intends to configure an IPSec solution that provides ESP with integrity protection, but not
confidentiality protection. Which of the following AES modes of operation would meet this integrity-only
requirement?
A. HMAC
B. PCBC
C. CBC
D. GCM
E. CFB
Answer: A
Verified Solution - 100% Result
3 of 7
Pass Exam
CompTIA - SY0-501
Topic 4, Exam Pool D
Question #:5 - (Exam Topic 4)
Which of the following is the BEST choice for a security control that represents a preventive and corrective
logical control at the same time?
A. Security awareness training
B. Antivirus
C. Firewalls
D. Intrusion detection system
Answer: B
Question #:6 - (Exam Topic 4)
The computer resource center issued smartphones to all first-level and above managers. The managers have
the ability to install mobile tools. Which of the following tools should be implemented to control the types of
tools the managers install?
A. Download manager
B. Content manager
C. Segmentation manager
D. Application manager
Answer: D
Verified Solution - 100% Result
4 of 7
Pass Exam
CompTIA - SY0-501
Topic 2, Exam Pool B
Question #:7 - (Exam Topic 2)
A security administrator suspects a MITM attack aimed at impersonating the default gateway is underway.
Which of the following tools should the administrator use to detect this attack? (Select two.)
A. Ping
B. Ipconfig
C. Tracert
D. Netstat
E. Dig
F. Nslookup
Answer: B C
Question #:8 - (Exam Topic 2)
After an identified security breach, an analyst is tasked to initiate the IR process. Which of the following is the
NEXT step the analyst should take?
A. Recovery
B. Identification
C. Preparation
D. Documentation
E. Escalation
Answer: B
Verified Solution - 100% Result
5 of 7
Pass Exam
CompTIA - SY0-501
Topic 6, Exam Pool F (New Questions)
Question #:9 - (Exam Topic 6)
After segmenting the network, the network manager wants to control the traffic between the segments. Which
of the following should the manager use to control the network traffic?
A. A DMZ
B. A VPN
C. A VLAN
D. An ACL
Answer: C
Question #:10 - (Exam Topic 6)
A company's Chief Information Officer (CIO) is meeting with the Chief Information Security Officer (CISO)
to plan some activities to enhance the skill levels of the company's developers. Which of the following would
be MOST suitable for training the developers?
A. A capture-the-flag competition
B. A phishing simulation
C. Physical security training
D. Basic awareness training
Answer: C
Verified Solution - 100% Result
6 of 7
Pass Exam
CompTIA - SY0-501
Topic 5, Exam Pool E
Verified Solution - 100% Result
7 of 7
About dumpscafe.com
dumpscafe.com was founded in 2007. We provide latest & high quality IT / Business Certification Training Exam
Questions, Study Guides, Practice Tests.
We help you pass any IT / Business Certification Exams with 100% Pass Guaranteed or Full Refund. Especially
Cisco, CompTIA, Citrix, EMC, HP, Oracle, VMware, Juniper, Check Point, LPI, Nortel, EXIN and so on.
View list of all certification exams: All vendors
We prepare state-of-the art practice tests for certification exams. You can reach us at any of the email addresses listed
below.
Sales: sales@dumpscafe.com
Feedback: feedback@dumpscafe.com
Support: support@dumpscafe.com
Any problems about IT certification or our products, You can write us back and we will get back to you within 24
hours.