QUESTION 281
What are two reasons for a certificate to appear in a CRL? (Choose two.)
|
A. |
CA key compromise |
|
B. |
cessation of operation |
|
C. |
validity expiration |
|
D. |
key length incompatibility |
|
E. |
certification path invalidity |
Correct Answer: AB
QUESTION 282
Which transport method is used by the IEEE 802.1X protocol?
|
A. |
EAPOL frames |
|
B. |
802.3 frames |
|
C. |
UDP RADIUS datagrams |
|
D. |
PPPoE frames |
Correct Answer: A
QUESTION 283
Which encryption mechanism is used in WEP?
|
A. |
RC4 |
|
B. |
RC5 |
|
C. |
DES |
|
D. |
AES |
Correct Answer: A
QUESTION 284
Which three statements about Security Group Tag Exchange Protocol are true? (Choose three.)
|
A. |
SXP runs on UDP port 64999. |
|
B. |
A connection is established between a “listener” and a “speaker.” |
|
C. |
It propagates the IP-to-SGT binding table across network devices that do not have the ability to perform SGT tagging at Layer 2 to devices that support it. |
|
D. |
SXP is supported across multiple hops. |
|
E. |
SXPv2 introduces connection security via TLS. |
Correct Answer: BCD
QUESTION 285
What does the SXP protocol exchange between peers?
|
A. |
IP to SGT binding information |
|
B. |
MAC to SGT binding information |
|
C. |
ingress port to SGT binding information |
|
D. |
ingress switch to SGT binding information |
Correct Answer: A
QUESTION 286
What is a primary function of the SXP protocol?
|
A. |
to extend a TrustSec domain on switches that do not support packet tagging with SGTs |
|
B. |
to map the SGT tag to VLAN information |
|
C. |
to allow the SGT tagged packets to be transmitted on trunks |
|
D. |
to exchange the SGT information between different TrustSec domains |
Correct Answer: A
QUESTION 287
In RFC 4034, DNSSEC introduced which four new resource record types? (Choose four.)
|
A. |
DNS Public Key (DNSKEY) |
|
B. |
Next Secure (NSEC) |
|
C. |
Resource Record Signature (RRSIG) |
|
D. |
Delegation Signer (DS) |
|
E. |
Top Level Domain (TLD) |
|
F. |
Zone Signing Key (ZSK) |
Correct Answer: ABCD
QUESTION 288
What functionality is provided by DNSSEC?
|
A. |
origin authentication of DNS data |
|
B. |
data confidentiality of DNS queries and answers |
|
C. |
access restriction of DNS zone transfers |
|
D. |
storage of the certificate records in a DNS zone file |
Correct Answer: A
How are the username and password transmitted if a basic HTTP authentication is used?
|
A. |
Base64 encoded username and password |
|
B. |
MD5 hash of the combined username and password |
|
C. |
username in cleartext and MD5 hash of the password |
|
D. |
cleartext username and password |
Correct Answer: A
QUESTION 290
Which field in an HTTPS server certificate is compared to a server name in the URL?
|
A. |
Common Name |
|
B. |
Issuer Name |
|
C. |
Organization |
|
D. |
Organizational Unit |
Correct Answer: A
Free VCE & PDF File for Cisco 350-018 Practice Tests
Instant Access to Free VCE Files: CCNA | CCNP | CCIE …
Instant Access to Free PDF Files: CCNA | CCNP | CCIE …