Mobile devices | Exam Premium CompTIA

CompTIA Security+ Question D-33

Which of the following attacks would cause all mobile devices to lose their association with corporate access points while the attack is underway?

A. Wireless jamming
B. Evil twin
C. Rogue AP
D. Packet sniffing

Answer: A

Explanation:
When most people think of frequency jamming, what comes to mind are radio, radar and cell phone jamming. However, any communication that uses radio frequencies can be jammed by a strong radio signal in the same frequency. In this manner, Wi-Fi may be attacked with a network jamming attack, reducing signal quality until it becomes unusable or disconnects occur. With very similar methods, a focused and aimed signal can actually break access point hardware, as with equipment destruction attacks.

CompTIA Security+ Question A-22

Which of the following types of cryptography should be used when minimal overhead is necessary for a mobile device?

A. Block cipher
B. Elliptical curve cryptography
C. Diffie-Hellman algorithm
D. Stream cipher

Answer: B

Explanation:
Regarding the performance of ECC applications on various mobile devices, ECC is the most suitable PKC (Public-key cryptography) scheme for use in a constrained environment. Note: Elliptic curve cryptography (ECC) is an approach to public-key cryptography based on the algebraic structure of elliptic curves over finite fields. One of the main benefits in comparison with non-ECC cryptography (with plain Galois fields as a basis) is the same level of security provided by keys of smaller size. Using smaller key size would be faster.

CompTIA Security+ Simulation 7

A Security administrator wants to implement strong security on the company smart phones and terminal servers located in the data center. Drag and Drop the applicable controls to each asset type.

Instructions: Controls can be used multiple times and not all placeholders needs to be filled. When you have completed the simulation, Please select Done to submit.

Correct Answer:

Cable locks are used as a hardware lock mechanism – thus best used on a Data Center Terminal Server.

Network monitors are also known as sniffers – thus best used on a Data Center Terminal Server.

Install antivirus software. Antivirus software should be installed and definitions kept current on all hosts. Antivirus software should run on the server as well as on every workstation. In addition to active monitoring of incoming fi les, scans should be conducted regularly to catch any infections that have slipped through- thus best used on a Data Center Terminal Server.

Proximity readers are used as part of physical barriers which makes it more appropriate to use on a center’s entrance to protect the terminal server.

Mentor app is an Apple application used for personal development and is best used on a mobile device such as a smart phone.

Remote wipe is an application that can be used on devices that are stolen to keep data safe. It is basically a command to a phone that will remotely clear the data on that phone. This process is known as a remote wipe, and it is intended to be used if the phone is stolen or going to another user.

Should a device be stolen, GPS (Global Positioning System) tracking can be used to identify its location and allow authorities to find it – thus best used on a smart phone.

Screen Lock is where the display should be configured to time out after a short period of inactivity and the screen locked with a password. To be able to access the system again, the user must provide the password. After a certain number of attempts, the user should not be allowed to attempt any additional logons; this is called lockout – thus best used on a smart phone.

Strong Password since passwords are always important, but even more so when you consider that the device could be stolen and in the possession of someone who has unlimited access and time to try various values – thus best use strong passwords on a smartphone as it can be stolen more easily than a terminal server in a data center.

Device Encryption- Data should be encrypted on the device so that if it does fall into the wrong hands, it cannot be accessed in a usable form without the correct passwords. It is recommended to you use Trusted Platform Module (TPM) for all mobile devices where possible.

Use pop-up blockers. Not only are pop-ups irritating, but they are also a security threat. Pop-ups (including pop-unders) represent unwanted programs running on the system, and they can jeopardize the system’s well-being. This will be more effective on a mobile device rather than a terminal server.

Use host-based firewalls. A firewall is the first line of defense against attackers and malware. Almost every current operating system includes a firewall, and most are turned on by Default- thus best used on a Data Center Terminal Server.

References:
Dulaney, Emmett and Chuck Eastton, CompTIA Security+ Study Guide, 6th Edition, Sybex,
Indianapolis

CompTIA Network+ Question A-65

A malicious student is blocking mobile devices from connecting to the internet when other students are in the classroom. Which of the following is the malicious student implementing?

A. Removing the AP from the classroom
B. ACL
C. Jamming
D. Firewall
E. IPS

Correct Answer: C

CompTIA A+ Core 2 Question H-91

Which of the following technologies can be used to secure mobile devices and their data? (Select TWO).

A. Protective screen
B. Remote wipe
C. Physical lock
D. Locator
E. Passcode lock

Correct Answer: BE

CompTIA A+ Core 2 Question E-81

Which of the following allows a hidden backdoor to be used for access to workstations on the Internet?

A. Firmware
B. Rootkits
C. SQL injection
D. Cross-side scripting

Correct Answer: B

Explanation:
http://www.spamlaws.com/how-rootkits-work.html Topic 3, Mobile Devices

CompTIA A+ Core 2 Question D-99

Which of the following can a technician implement to ensure that only company owned mobile devices can connect to the wireless network?

A. Deploy a script to auto-configure employees mobile devices wireless settings.
B. Configure MAC address filtering on the access points.
C. Implement a wireless policy and train all users.
D. Enable WPA2-Personal with a strong password.

Correct Answer: B

CompTIA A+ Core 2 Question D-44

Which of the following methods of securing mobile devices will prevent data loss due to corruption?

A. Enforce pass code locks
B. Install location monitoring application
C. Perform remote wipe after failed login
D. Perform remote application back-up

Correct Answer: D

CompTIA A+ Core 2 Question B-89

Which of the following BEST represents a security vulnerability of mobile devices? (Select TWO).

A. Unauthorized downloads
B. Viruses
C. Improper file permissions
D. Phishing
E. Theft

Correct Answer: BE

Explanation:
Security of mobile devices can be compromised when a virus infects the device. Another way is theft because a mobile device is portable and can be easily be handled or pocketed.

CompTIA A+ Core 2 Question B-10

Which of the following is the BEST option to prevent data breaches on lost mobile devices?

A. Install a locator application on the mobile device so that it can be traced.
B. Apply a restriction to lock the device after a certain number of failed login attempts.
C. Configure the device to remote wipe as soon as it is reported lost.
D. Utilize the fingerprint scanner and passcode for multifactor authentication.

Correct Answer: C