Sec+ 701 Final Review Quiz

SFTP (Secure File Transfer Protocol) is designed to securely transfer files over a network, using encryption to protect data. In contrast, FTP is not secure, while Telnet and SMTP serve different purposes.

In information security, CIA stands for Confidentiality, Integrity, and Availability. These three principles are essential for protecting data and ensuring it is accessible only to authorized users.

A security badge is a physical security control used to restrict access to facilities. In contrast, a firewall, antivirus software, and encryption are all examples of logical or technical security controls.

Role-Based Access Control (RBAC) assigns permissions based on predefined roles within an organization, making it easier to manage access rights compared to Discretionary Access Control (DAC) and Mandatory Access Control (MAC).

The primary purpose of a risk assessment is to identify and evaluate potential threats and vulnerabilities, enabling organizations to understand risks and implement appropriate controls.

AES (Advanced Encryption Standard) is a symmetric cryptographic algorithm, meaning it uses the same key for both encryption and decryption. In contrast, RSA, ECC, and DSA are asymmetric algorithms that use key pairs.

The Acceptable Use Policy defines how employees can use organizational resources, ensuring proper conduct and security. Other options like the Incident Response Plan and Disaster Recovery Plan focus on different aspects of organizational management.