Valid SY0-401 Dumps shared by NewPassLeader for Helping Passing SY0-401 Exam! NewPassLeader now offer the newest SY0-401 exam dumps, the NewPassLeader SY0-401 exam questions have been updated and answers have been corrected get the newest NewPassLeader SY0-401 dumps with Test Engine here: http://https://www.newpassleader.com/CompTIA/SY0-401-exam-preparation-materials.html (1790 Q&As Dumps, 30%OFF Special Discount: 30free )

NEW QUESTION NO: 6
An attack that is using interference as its main attack to impede network traffic is the following:
A. Using a similar wireless configuration of a nearby network
B. Inundating a target system with SYN requests
C. Utilizing a previously unknown security flaw against the target
D. Introducing too much data to a targets memory allocation
Answer: D

NEW QUESTION NO: 7
A system administrator is setting up a file transfer server. The goal is to encrypt the user authentication and the files the user is sending using only a user ID and a key pair. Which of the following methods would achieve this goal?
A. AES
B. IPSec
C. PGP
D. SSH
Answer: D
Explanation/Reference:
Explanation:
With SSH you can use automatically generated public-private key pairs to encrypt a network connection, and then use password authentication to log on. Or you can use a manually generated public-private key pair to perform the authentication, allowing users or programs to log in without having to specify a password.

NEW QUESTION NO: 8
Company policy requires employees to change their passwords every 60 days. The security manager has verified all systems are configured to expire passwords after 60 days. Despite the policy and technical configuration, weekly password audits suggest that some employees have had the same weak passwords in place longer than 60 days. Which of the following password parameters is MOST likely misconfigured?
A. Length
B. Maximum lifetime
C. Complexity
D. Minimum lifetime
Answer: C

NEW QUESTION NO: 9
A workstation is exhibiting symptoms of malware and the network security analyst has decided to remove the system from the network.
Which of the following stages of the Incident Handling Response represents this?
A. Recovery
B. Plan of action
C. Lesson Learned
D. Mitigation
Answer: B

NEW QUESTION NO: 10
Which of the following may be used with a BNC connector?
A. 1000BaseSX
B. 100BaseFX
C. 10Base2
D. 10GBaseT
Answer: C

NEW QUESTION NO: 11
A user attempts to install a new and relatively unknown software program recommended by a colleague.
The user is unable to install the program, dispute having successfully installed other programs previously.
Which of the following is MOST likely the cause for the user's inability to complete the installation?
A. Application White Listing
B. Network Intrusion Prevention System
C. Group Policy
D. Application black listing
Answer: D

NEW QUESTION NO: 12
An administrator is having difficulty configuring WPA2 Enterprise using EAP-PEAP-MSCHAPv2. The administrator has configured the wireless access points properly, and has configured policies on the RADIUS server and configured settings on the client computers. Which of the following is missing?
A. The use of CCMP rather than TKIP
B. A third party LEAP client must be installed
C. Client certificates are needed
D. A RADIUS server certificate is needed
Answer: C

NEW QUESTION NO: 13
Which of the following should be used to authenticate and log connections from wireless users connecting with EAP-TLS?
A. Kerberos
B. LDAP
C. SAML
D. RADIUS
Answer: D
Explanation/Reference:
Explanation:
EAP-TLS, defined in RFC 2716, is an IETF open standard, and is well-supported among wireless vendors.
It offers a good deal of security, since TLS is considered the successor of the SSL standard. It uses PKI to secure communication to the RADIUS authentication server.
Remote Authentication Dial In User Service (RADIUS) is a networking protocol that provides centralized Authentication, Authorization, and Accounting (AAA) management for users who connect and use a network service. Because of the broad support and the ubiquitous nature of the RADIUS protocol, it is often used by ISPs and enterprises to manage access to the Internet or internal networks, wireless networks, and integrated e-mail services.

NEW QUESTION NO: 14
A company is concerned that a compromised certificate may result in a man-in-the-middle attack against backend financial servers. In order to minimize the amount of time a compromised certificate would be accepted by other servers, the company decides to add another validation step to SSL/TLS connections.
Which of the following technologies provides the FASTEST revocation capability?
A. Online Certificate Status Protocol (OCSP)
B. Public Key Cryptography (PKI)
C. Certificate Revocation Lists (CRL)
D. Intermediate Certificate Authority (CA)
Answer: A
Explanation/Reference:
Explanation:
CRL (Certificate Revocation List) was first released to allow the CA to revoke certificates, however due to limitations with this method it was succeeded by OSCP. The main advantage to OCSP is that because the client is allowed query the status of a single certificate, instead of having to download and parse an entire list there is much less overhead on the client and network.

NEW QUESTION NO: 15
Which of the following describes purposefully injecting extra input during testing, possibly causing an application to crash?
A. Input validation
B. Exception handling
C. Application hardening
D. Fuzzing
Answer: D
Explanation/Reference:
Explanation:
Fuzzing is a software testing technique that involves providing invalid, unexpected, or random data to as inputs to a computer program. The program is then monitored for exceptions such as crashes, or failed validation, or memory leaks.

NEW QUESTION NO: 16
A software developer utilizes cryptographic functions to generate codes that verify message integrity. Due to the nature if the data that is being sent back and forth from the client application to the server, the developer would like to change the cryptographic function to one that verities both authentication and message integrity. Which of the following algorithms should the software developer utilize?
A. RIPEMD
B. HMAC
C. Two Fish
D. SHA
Answer: A