CISSP® Official (ISC)2® Practice Tests David Seidl Mike Chapple Executive Editor: Jim Minatel Development Editor: Kim Wimpsett Technical Editors: Jeff Parker and Addam Schroll Production Editor: Christine O'Connor Copy Editors: Judy Flynn and Elizabeth Welch Editorial Manager: Mary Beth Wakefield Production Manager: Kathleen Wisor Book Designers: Bill Gibson and Judy Fung Proofreader: Nancy Carrasco Indexer: Ted Laux Project Coordinator, Cover: Brent Savage Cover Designer: Wiley Cover Image: Getty Images Inc./Jeremy Woodhouse Copyright © 2016 by John Wiley & Sons, Inc., Indianapolis, Indiana Published simultaneously in Canada ISBN: 978-1-119-25228-3 ISBN: 978-1-119-28804-6 (ebk.) ISBN: 978-1-119-25229-0 (ebk.) Manufactured in the United States of America No part of this publication may be reproduced, stored in a retrieval system or transmitted in any form or by any means, electronic, mechanical, photocopying, recording, scanning or otherwise, except as permitted under Sections 107 or 108 of the 1976 United States Copyright Act, without either the prior written permission of the Publisher, or authorization through payment of the appropriate per-copy fee to the Copyright Clearance Center, 222 Rosewood Drive, Danvers, MA 01923, (978) 750-8400, fax (978) 646-8600 Requests to the Publisher for permission should be addressed to the Permissions Department, John Wiley & Sons, Inc., 111 River Street, Hoboken, NJ 07030, (201) 748-6011, fax (201) 7486008, or online at http://www.wiley.com/go/permissions Limit of Liability/Disclaimer of Warranty: The publisher and the author make no representations or warranties with respect to the accuracy or completeness of the contents of this work and specifically disclaim all warranties, including without limitation warranties of fitness for a particular purpose No warranty may be created or extended by sales or promotional materials The advice and strategies contained herein may not be suitable for every situation This work is sold with the understanding that the publisher is not engaged in rendering legal, accounting, or other professional services If professional assistance is required, the services of a competent professional person should be sought Neither the publisher nor the author shall be liable for damages arising herefrom The fact that an organization or Web site is referred to in this work as a citation and/or a potential source of further information does not mean that the author or the publisher endorses the information the organization or Web site may provide or recommendations it may make Further, readers should be aware that Internet Web sites listed in this work may have changed or disappeared between when this work was written and when it is read For general information on our other products and services or to obtain technical support, please contact our Customer Care Department within the U.S at (877) 762-2974, outside the U.S at (317) 572-3993 or fax (317) 572-4002 Wiley publishes in a variety of print and electronic formats and by print-on-demand Some material included with standard print versions of this book may not be included in e-books or in print-on-demand If this book refers to media such as a CD or DVD that is not included in the version you purchased, you may download this material at http://booksupport.wiley.com For more information about Wiley products, visit www.wiley.com Library of Congress Control Number: 2016941726 TRADEMARKS: Wiley, the Wiley logo, and the Sybex logo are trademarks or registered trademarks of John Wiley & Sons, Inc and/or its affiliates, in the United States and other countries, and may not be used without written permission (ISC)2 and CISSP are registered trademarks of International Information Systems Security Certification Consortium, Inc All other trademarks are the property of their respective owners John Wiley & Sons, Inc is not associated with any product or vendor mentioned in this book For Renee, the most patient and caring person I know Thank you for being the heart of our family —MJC This book is for Lauren, who supports me through each writing endeavor, and for the wonderful teachers and professors who shared both their knowledge and their lifelong love of learning with me —DAS Acknowledgments The authors would like to thank the many people who made this book possible Jim Minatel at Wiley Publishing helped us extend the Sybex CISSP franchise to include this new title and gain important support from the International Information Systems Security Consortium (ISC)2 Carole Jelen, our agent, worked on a myriad of logistic details and handled the business side of the book with her usual grace and commitment to excellence Addam Schroll, our technical editor, pointed out many opportunities to improve our work and deliver a high-quality final product Jeff Parker’s technical proofing ensured a polished product Kim Wimpsett served as developmental editor and managed the project smoothly Many other people we’ll never meet worked behind the scenes to make this book a success About the Authors Mike Chapple, Ph.D., CISSP is an author of the best-selling CISSP (ISC)2 Certified Information Systems Security Professional Official Study Guide, Sybex, 2015, now in its seventh edition He is an information security professional with two decades of experience in higher education, the private sector, and government Mike currently serves as Senior Director for IT Service Delivery at the University of Notre Dame In this role, he oversees the information security, data governance, IT architecture, project management, strategic planning, and product management functions for Notre Dame Mike also serves as a concurrent assistant professor in the university’s Computing and Digital Technologies department, where he teaches undergraduate courses on information security Before returning to Notre Dame, Mike served as Executive Vice President and Chief Information Officer of the Brand Institute, a Miami-based marketing consultancy Mike also spent four years in the information security research group at the National Security Agency and served as an active duty intelligence officer in the U.S Air Force He is a technical editor for Information Security Magazine and has written 20 books, including Cyberwarfare: Information Operations in a Connected World (Jones & Bartlett, 2015), the CompTIA Security+ Training Kit (Microsoft Press, 2013), and the CISSP Study Guide (Sybex, 7th edition, 2015) Mike earned both his BS and Ph.D degrees from Notre Dame in computer science & engineering He also holds an MS in computer science from the University of Idaho and an MBA from Auburn University David Seidl CISSP is the Senior Director for Campus Technology Services at the University of Notre Dame As the Senior Director for CTS, David is responsible for central platform and operating system support, database administration and services, identity and access management, application services, and email and digital signage Prior to his current role, he was Notre Dame’s Director of Information Security David teaches a popular course on networking and security for Notre Dame’s Mendoza College of Business In addition to his professional and teaching roles, he has co-authored the CompTIA Security+ Training Kit (Microsoft Press, 2013) and Cyberwarfare: Information Operations in a Connected World (Jones & Bartlett, 2015), and served as the technical editor for the 6th (Sybex, 2012) and 7th (Sybex, 2015) editions of the CISSP Study Guide David holds a bachelor’s degree in communication technology and a master’s degree in information security from Eastern Michigan University, as well as CISSP, GPEN, and GCIH certifications ... Copyright © 2016 by John Wiley & Sons, Inc., Indianapolis, Indiana Published simultaneously in Canada ISBN: 97 8-1 -1 1 9-2 522 8-3 ISBN: 97 8-1 -1 1 9-2 880 4-6 (ebk.) ISBN: 97 8-1 -1 1 9-2 522 9-0 (ebk.) Manufactured... 8) Chapter Practice Test Chapter 10 Practice Test Appendix Answers to Review Questions Advert EULA Introduction CISSP Official (ISC)2 Practice Tests is a companion volume to the CISSP (ISC)2 Certified... Architecture Professional (CISSP- ISSAP) Information Systems Security Engineering Professional (CISSP- ISSEP) Information Systems Security Management Professional (CISSP- ISSMP) The CISSP certification