Network Security — CompTIA Network+ Practice Questions

Learning

Loading practice session...

Loading certificate…

Ready to learn

Sample questions — Network Security

1. Which principle of the CIA triad is primarily concerned with ensuring that data is not altered or destroyed in an unauthorized manner?

A.Confidentiality
B.Integrity✓ Correct
C.Availability
D.Non-repudiation

Explanation

Integrity ensures that data remains accurate and complete, preventing unauthorized modifications or destruction. A is incorrect because Confidentiality focuses on preventing unauthorized disclosure. C is incorrect because Availability ensures timely and reliable access to data. D is incorrect because Non-repudiation prevents denial of actions.

2. Which access control model assigns permissions based on a user's organizational role?

A.Discretionary Access Control (DAC)
B.Mandatory Access Control (MAC)
C.Role-Based Access Control (RBAC)✓ Correct
D.Rule-Based Access Control

Explanation

Role-Based Access Control (RBAC) assigns permissions based on the roles a user holds within an organization, simplifying access management. A is incorrect because DAC gives data owners control over who can access their data. B is incorrect because MAC uses security labels to restrict access. D is incorrect because Rule-Based Access Control uses predefined rules to grant or deny access.

3. Which of the following BEST exemplifies the principle of 'Defense in Depth'?

A.Relying solely on a strong firewall to protect the network perimeter.
B.Implementing multiple layers of security controls, so that if one fails, others are in place.✓ Correct
C.Allowing all users administrative privileges to simplify IT management.
D.Disabling all security features to improve system performance.

Explanation

Defense in Depth involves implementing multiple security layers to provide redundancy and increase overall security posture. A is incorrect because it represents a single point of failure. C is incorrect because it increases the attack surface. D is incorrect because it removes all security controls.

4. Which type of attack involves an attacker impersonating a legitimate device to intercept communications between two other devices?

A.Denial-of-Service (DoS) attack
B.Man-in-the-Middle (MitM) attack✓ Correct
C.SQL Injection attack
D.Cross-Site Scripting (XSS) attack

Explanation

A Man-in-the-Middle (MitM) attack involves an attacker intercepting communications between two parties by impersonating a legitimate device. A is incorrect because a DoS attack aims to disrupt service availability. C is incorrect because SQL injection targets databases. D is incorrect because XSS targets vulnerabilities in web applications.

5. An attacker creates a fake Wi-Fi hotspot that mimics a legitimate network. Unsuspecting users connect to the fake hotspot, allowing the attacker to capture their traffic. What type of attack is this?

A.Deauthentication attack
B.Evil Twin attack
C.Bluejacking✓ Correct
D.Wireless jamming

Explanation

This is an Evil Twin attack, where a rogue access point is set up to mimic a legitimate one to steal credentials. A is incorrect because a deauthentication attack forces clients to disconnect from a legitimate network. C is incorrect because Bluejacking is sending unsolicited messages over Bluetooth. D is incorrect because wireless jamming disrupts wireless signals.

Practice all 58+ questions in this domain

Start free practice →

Frequently asked questions

How many CompTIA Network+ practice questions are there for Network Security?↓

AnyCert has 58 CompTIA Network+ practice questions specifically for the Network Security domain, each with a detailed AI-tutored explanation.

Is Network Security heavily tested on the CompTIA Network+ exam?↓

Network Security is one of the core domains in the CompTIA Network+ exam blueprint. Mastering this domain is essential for passing. AnyCert's practice questions cover the full scope of testable topics in this domain.

How should I study the Network Security domain for CompTIA Network+?↓

Practice all 58 Network Security questions in AnyCert, review every explanation for missed answers, and use the AI tutor to clarify any concept. Focus on understanding the reasoning behind each answer, not just memorizing the correct choice.

Sample questions — Network Security

1. Which principle of the CIA triad is primarily concerned with ensuring that data is not altered or destroyed in an unauthorized manner?

A.Confidentiality
B.Integrity✓ Correct
C.Availability
D.Non-repudiation

Explanation

2. Which access control model assigns permissions based on a user's organizational role?

A.Discretionary Access Control (DAC)
B.Mandatory Access Control (MAC)
C.Role-Based Access Control (RBAC)✓ Correct
D.Rule-Based Access Control

Explanation

3. Which of the following BEST exemplifies the principle of 'Defense in Depth'?

A.Relying solely on a strong firewall to protect the network perimeter.
B.Implementing multiple layers of security controls, so that if one fails, others are in place.✓ Correct
C.Allowing all users administrative privileges to simplify IT management.
D.Disabling all security features to improve system performance.

Explanation

4. Which type of attack involves an attacker impersonating a legitimate device to intercept communications between two other devices?

A.Denial-of-Service (DoS) attack
B.Man-in-the-Middle (MitM) attack✓ Correct
C.SQL Injection attack
D.Cross-Site Scripting (XSS) attack

Explanation

A.Deauthentication attack
B.Evil Twin attack
C.Bluejacking✓ Correct
D.Wireless jamming

Explanation

Practice all 58+ questions in this domain

Start free practice →

Frequently asked questions

How many CompTIA Network+ practice questions are there for Network Security?↓

AnyCert has 58 CompTIA Network+ practice questions specifically for the Network Security domain, each with a detailed AI-tutored explanation.

Is Network Security heavily tested on the CompTIA Network+ exam?↓

How should I study the Network Security domain for CompTIA Network+?↓