640-553 IINS
Sunday, January 24th, 2010 | Certfication topic
Cisco Certified Network Associate Security (CCNA® Security) validates associate-level knowledge and skills required to secure Cisco networks. With a CCNA Security certification, a network professional demonstrates the skills required to develop a security infrastructure, recognize threats and vulnerabilities to networks, and mitigate security threats. The CCNA Security curriculum emphasizes core security technologies, the installation, troubleshooting and monitoring of network devices to maintain integrity, confidentiality and availability of data and devices, and competency in the technologies that Cisco uses in its security structure.
Information Systems Security (INFOSEC) Professional Recognition
CNSS 4013 Recognition
Information Assurance Supplemental Resources
CCNA Security Prerequisites
Valid CCNA or any CCIE Certification can act as a pre-requisite.
CCNA Security Exams & Recommended Training
Required Exam(s)
Recommended Training
640-553 IINS Implementing Cisco IOS Network Security (IINS)
CCNA Security Recertification
CCNA Security certifications are valid for three years. To recertify, pass a CCNA Concentration exam (wireless, security, voice), or pass any 642 – XXX professional level or Cisco Specialist exam (excluding Sales Specialist exams), or pass a current CCIE or CCDE written exam.
640-553 IINS Implementing Cisco IOS Network Security Review
PassGuide.com is your premier source of 640-553 IINS Implementing Cisco IOS Network Security test training. With our 640-553 IINS Implementing Cisco IOS Network Security practice tests, no other vendor will be able to compare to quality 640-553 study guides. our Cisco 640-553 braindumps exam is always updated to provide you the most actual information available and this is done with the help of our testking professionals team of certification experts, technical staff, and comprehensive language masters who are always in-touch with the changes in the 640-553 exam. So the true way for passing the 640-553 exam is to get in-touch with the free study guide, brain dumps and test questions that will lead to your certification success. Easiest way to get these certifications is to log on to the 640-553 testking and download the 640-553 test questions to do Cisco IINS Implementing Cisco IOS Network Security practice exam to obtain your free 640-553 exam certification.Test king 640-553 Practice Questions are designedwith questions, coupled with precise, logical and verified explanations.Our 640-553 practice exam provides you with an examination experience like no other.Our 640-553 practice exams and study questions are composed by current and active Information Technology experts, who use their experience in preparing you for your future in IT. Pass On Your First Try With PassGuide.com.At 640-553 testking braindumps page all the essential 640-553 preparation materials can be found. This package includes 640-553 braindumps, free Cisco q&a, 640-553 practice exams. Our Lifetime Membership includes more than 1200 certification tests and 640-553 exam is part of this Membership.
137. Which option is a desirable feature of using symmetric encryption algorithms?
A. they are often used for wire-speed encryption in data networks
B. they are based on complex mathematical operations and can easily be accelerated by hardware
C. they offer simple key management properties
D. they are best used for one-time encryption needs
Answer: A
138. Which option is true of using cryptography hashes?
A. they are easily reversed to decipher the message context
B. they convert arbitrary data into fixed length digits
C. they are based on a two-way mathematical function
D. they are used for encrypting bulk data communications
Answer: B
139. Which option is true of intrusion prevention systems?
A. they operate in promiscuous mode
B. they operate in inline mode
C. they have no potential impact on the data segment being monitored
D. they are more vulnerable to evasion techniques than IDS
Answer: B
140. Which statement is true when using zone-based firewalls on a Cisco router?
A. policies are applied to traffic moving between zones, not between interfaces
B. the firewalls can be configured simultaneously on the same interface as classic CBAC using the ip
inspect CLI command
C. interface ACLs are applied before zone-based policy firewalls when they are applied outbond
D. when configuring with the ?PASS? action, stateful inspection is applied to all traffic passing between the
configured zones
Answer: A
141. From what configuration mode would you enter the set peer ip-address command to
specify the IP address of an IPsec peer?
A. Transform set configuration mode
B. Crypto map configuration mode
C. ISAKMP configuration mode
D. Interface configuration mode
Answer: B
142. What two site-to-site VPN wizards are available in the Cisco SDM interface? (Choose
two.)
A. Easy VPN Setup
B. Quick Setup
C. Step-by-Step
D. DMVPN Setup
Answer: BC
143. What command displays all existing IPsec security associations (SA)?
A. show crypto isakmp sa
B. show crypto ipsec sa
C. show crypto ike active
D. show crypto sa active
Answer: B
144. Which two statements are true about the differences between IDS and IPS? (Choose two.)
A. IPS operates in promiscuous mode.
B. IPS receives a copy of the traffic to be analyzed.
C. IPS operates in inline mode.
D. IDS receives a copy of the traffic to be analyzed.
Answer: CD
145. What form of attack are all algorithms susceptible to?
A. Meet-in-the-middle
B. Spoofing
C. Stream cipher
D. Brute-force
Answer: D
146. Which type of cipher achieves security by rearranging the letters in a string of text?
A. Vigenère cipher
B. Stream cipher
C. Transposition cipher
D. Block cipher
Answer: C
147. Which of the following are techniques used by symmetric encryption cryptography?
(Choose all that apply.)
A. Block ciphers
B. Message Authentication Codes (MAC)
C. One-time pad
D. Stream ciphers
E. Vigenère ciphers
Answer: ABD
148. DES typically operates in block mode, where it encrypts data in what size blocks?
A. 56-bit blocks
B. 40-bit blocks
C. 128-bit blocks
D. 64-bit blocks
Answer: D
149. What method does 3DES use to encrypt plain text?
A. 3DES-EDE
B. EDE-3DES
C. 3DES-AES
D. AES-3DES
Answer: A
150. Which of the following is not considered a trustworthy symmetric encryption
algorithm?
A. 3DES
B. IDEA
C. EDE
D. AES
Answer: C
PassGuide Practice Test Questions
1 Comment to 640-553 IINS
I read blogs on a similar topic, but i never visited your blog. I added it to favorites and i’ll be your constant reader.
Leave a comment
Search
Pages
PassGuide Certification Testing
February 22, 2010