Skip to main content

Security Architecture & Engineering

Domain 01 Practice Set: 01

CISSP DOMAIN 03: Security Architecture & Engineering (Assessment Mode)

  CISSP Domain 3: These questions aim to test your understanding of critical security concepts and technologies involved in securing information and systems, aligning with the objectives of Domain 3 of the CISSP exam

Domain 03: Practice Set 01

Disclaimer: The practice exam questions provided are representative of the certification exam, but not the actual questions you will see on the certification exam. Practice exams are for self-assessment.

Page : 1/10

1. What does the concept of "Fail Secure" entail in security systems?
2. Which of the following best describes the concept of a "root of trust"?
3. Which of the following security models is specifically designed to prevent conflict of interest when accessing data?
4. Which principle of secure design emphasizes the need for a system to continue operating correctly even when components fail?
5. Which of the following is a characteristic of the Biba integrity model?

Page : 2/10

6. What security mechanism can be used to detect unauthorized changes to software and data?
7. Which of the following scenarios is an example of a Man-in-the-Middle (MitM) attack?
8. In secure software development, what is the significance of input validation?
9. Which mechanism is commonly used in operating systems to segregate the memory space used by different applications?
10. Which of the following best describes the purpose of Security Assertion Markup Language (SAML)?

Page : 3/10

11. What is the primary purpose of employing containerization in application deployment?
12. What is the primary function of a Security Information and Event Management (SIEM) system?
13. Which of the following best describes the concept of "data at rest" encryption?
14. What is the primary purpose of a Public Key Infrastructure (PKI)?
15. What role does an intrusion detection system (IDS) play in a security architecture?

Page : 4/10

16. What is the main goal of employing steganography in cybersecurity?
17. What principle is enforced by the use of mandatory access control (MAC) models?
18. In the context of secure software development, what is the primary goal of threat modeling?
19. In the context of secure architecture, what is the main goal of a demilitarized zone (DMZ)?
20. In cryptography, what is the main purpose of using a nonce?

Page : 5/10

21. What is the main purpose of implementing a Sandboxing technique in software development?
22. Which type of access control model is based on the classification of data and clearance levels of users?
23. What is the primary purpose of using hardware security modules (HSMs) in a network infrastructure?
24. Which security model is primarily concerned with ensuring that actions are taken in a series of steps that maintain a secure state?
25. What is a primary security concern that can be mitigated by using secure coding practices?

Page : 6/10

26. What is the primary function of a digital signature?
27. Which of the following is a primary security concern with virtualization technology?
28. Which of the following best describes a Zero Trust architecture?
29. What is the primary purpose of a Data Loss Prevention (DLP) system?
30. What is the primary function of the Trusted Platform Module (TPM) in computer security?

Page : 7/10

31. What is the function of a Certificate Authority (CA) in a Public Key Infrastructure (PKI)?
32. What principle is primarily enforced by the Clark-Wilson model?
33. Which of the following encryption methods is used to secure data in transit and is based on a system where each party involved has a pair of cryptographic keys consisting of a public key and a private key?
34. Which of the following encryption algorithms is considered asymmetric?
35. What is the primary difference between symmetric and asymmetric encryption?

Page : 8/10

36. In the context of Public Key Infrastructure (PKI), what role does a Certificate Authority (CA) play?
37. What is the primary security concern addressed by implementing an air gap in a network?
38. Which of the following best describes the concept of "defense in depth"?
39. Which of the following best describes the purpose of a hardware security module (HSM)?
40. Which concept is essential for ensuring that a system can enforce and verify a security policy on data it processes?

Page : 9/10

41. What role does "Separation of Duties" play in information security?
42. What is the primary security concern addressed by input validation in software applications?
43. Which of the following security capabilities is most directly associated with preventing eavesdropping on network communications?
44. Which of the following best describes the main goal of Mandatory Access Control (MAC)?
45. What is the main difference between hashing and encryption?

Page : 10/10

46. Which security model is primarily focused on ensuring that access controls are implemented correctly to keep data confidential?
47. What is the main purpose of employing a WAF (Web Application Firewall)?
48. What is the primary function of a Trusted Platform Module (TPM) in a computing device?
49. Which statement best describes the role of Secure Sockets Layer (SSL) and Transport Layer Security (TLS) protocols?
50. What does a Public Key Infrastructure (PKI) primarily support?
CISSP Practice Test, Quiz & Flashcards

More practice question and flash cards

Risk & Security Management

Domain_01_CISSP Practice Set 01

Asset Security

Domain_02_CISSP Practice Set 01

Security Architecture & Engineering

Domain_03_CISSP Practice Set 01

Communication & Network Security

Domain_04_CISSP Practice Set 01

Identity & Access Management

Domain_05_CISSP Practice Set 01

Domain 03: Mindmaps, Flashcards and more…

Learn More

CISSP Practice Sets Status

CISSP practice sets and Questions counter

5

CISSP Practice Sets

250

Questions

5.8

Test Submited by Users