QUESTION 281
What are two reasons for a certificate to appear in a CRL? (Choose two.)
A. |
CA key compromise |
B. |
cessation of operation |
C. |
validity expiration |
D. |
key length incompatibility |
E. |
certification path invalidity |
Correct Answer: AB
QUESTION 282
Which transport method is used by the IEEE 802.1X protocol?
A. |
EAPOL frames |
B. |
802.3 frames |
C. |
UDP RADIUS datagrams |
D. |
PPPoE frames |
Correct Answer: A
QUESTION 283
Which encryption mechanism is used in WEP?
A. |
RC4 |
B. |
RC5 |
C. |
DES |
D. |
AES |
Correct Answer: A
QUESTION 284
Which three statements about Security Group Tag Exchange Protocol are true? (Choose three.)
A. |
SXP runs on UDP port 64999. |
B. |
A connection is established between a “listener” and a “speaker.” |
C. |
It propagates the IP-to-SGT binding table across network devices that do not have the ability to perform SGT tagging at Layer 2 to devices that support it. |
D. |
SXP is supported across multiple hops. |
E. |
SXPv2 introduces connection security via TLS. |
Correct Answer: BCD
QUESTION 285
What does the SXP protocol exchange between peers?
A. |
IP to SGT binding information |
B. |
MAC to SGT binding information |
C. |
ingress port to SGT binding information |
D. |
ingress switch to SGT binding information |
Correct Answer: A
QUESTION 286
What is a primary function of the SXP protocol?
A. |
to extend a TrustSec domain on switches that do not support packet tagging with SGTs |
B. |
to map the SGT tag to VLAN information |
C. |
to allow the SGT tagged packets to be transmitted on trunks |
D. |
to exchange the SGT information between different TrustSec domains |
Correct Answer: A
QUESTION 287
In RFC 4034, DNSSEC introduced which four new resource record types? (Choose four.)
A. |
DNS Public Key (DNSKEY) |
B. |
Next Secure (NSEC) |
C. |
Resource Record Signature (RRSIG) |
D. |
Delegation Signer (DS) |
E. |
Top Level Domain (TLD) |
F. |
Zone Signing Key (ZSK) |
Correct Answer: ABCD
QUESTION 288
What functionality is provided by DNSSEC?
A. |
origin authentication of DNS data |
B. |
data confidentiality of DNS queries and answers |
C. |
access restriction of DNS zone transfers |
D. |
storage of the certificate records in a DNS zone file |
Correct Answer: A
How are the username and password transmitted if a basic HTTP authentication is used?
A. |
Base64 encoded username and password |
B. |
MD5 hash of the combined username and password |
C. |
username in cleartext and MD5 hash of the password |
D. |
cleartext username and password |
Correct Answer: A
QUESTION 290
Which field in an HTTPS server certificate is compared to a server name in the URL?
A. |
Common Name |
B. |
Issuer Name |
C. |
Organization |
D. |
Organizational Unit |
Correct Answer: A
Free VCE & PDF File for Cisco 350-018 Practice Tests
Instant Access to Free VCE Files: CCNA | CCNP | CCIE …
Instant Access to Free PDF Files: CCNA | CCNP | CCIE …