ISA-IEC-62443試験正確な問題集、学習ノートと理論 [2024年02月]
100%高得点合格保証ISA-IEC-62443無制限90解答
質問 # 10
What is defined as the hardware and software components of an IACS?
Available Choices (select all choices that are correct)
- A. Control system
- B. Electronic security
- C. Cybersecuritv
- D. COTS software and hardware
正解:A
質問 # 11
Which of the following is a cause for the increase in attacks on IACS?
Available Choices (select all choices that are correct)
- A. Knowledge of exploits and tools readily available on the Internet
- B. Fewer personnel with system knowledge having access to IACS
- C. Use of proprietary communications protocols
- D. The move away from commercial off the shelf (COTS) systems, protocols, and networks
正解:D
質問 # 12
The Risk Analysis category contains background information that is used where?
Available Choices (select all choices that are correct)
- A. Only the Risk ID element
- B. (Elements external to the CSMS
- C. Only the Assessment element
- D. Many other elements in the CSMS
正解:A
質問 # 13
Which of the following attacks relies on a human weakness to succeed?
Available Choices (select all choices that are correct)
- A. Spoofing
- B. Denial-of-service
- C. Escalation-of-privileges
- D. Phishing
正解:D
質問 # 14
Which is a PRIMARY reason why network security is important in IACS environments?
Available Choices (select all choices that are correct)
- A. PLCs are inherently unreliable.
- B. PLCs are programmed using ladder logic.
- C. PLCs use serial or Ethernet communications methods.
- D. PLCs under cyber attack can have costly and dangerous impacts.
正解:D
質問 # 15
Which type of cryptographic algorithms requires more than one key?
Available Choices (select all choices that are correct)
- A. Block ciphers
- B. Symmetric (private) key
- C. Asymmetric (public) key
- D. Stream ciphers
正解:C
質問 # 16
Which is a commonly used protocol for managing secure data transmission on the Internet?
Available Choices (select all choices that are correct)
- A. Secure Sockets Layer
- B. Microsoft Point-to-Point Encryption
- C. Secure Telnet
- D. Datagram Transport Layer Security (DTLS)
正解:A
質問 # 17
Why is patch management more difficult for IACS than for business systems?
Available Choices (select all choices that are correct)
- A. Overtime pay is required for technicians.
- B. Many more approvals are required.
- C. Business systems automatically update.
- D. Patching a live automation system can create safety risks.
正解:D
質問 # 18
Which steps are included in the ISA/IEC 62443 assess phase?
Available Choices (select all choices that are correct)
- A. Cybersecurity requirements specification and allocation of IACS assets to zones and conduits
- B. Cybersecurity requirements specification and detailed cyber risk assessment
- C. Detailed cyber risk assessment and cybersecurity maintenance, monitoring, and management of change
- D. Allocation of IACS assets to zones and conduits, and detailed cyber risk assessment
正解:A
質問 # 19
What.are the two elements of the risk analysis category of an IACS?
Available Choices (select all choices that are correct)
- A. Business recovery and risk elimination or mitigation
- B. Business rationale and risk identification and classification
- C. Business rationale and risk reduction and avoidance
- D. Risk evaluation and risk identification
正解:B
質問 # 20
Using the risk matrix below, what is the risk of a medium likelihood event with high consequence?
- A. Option C
- B. Option D
- C. Option B
- D. Option A
正解:C
質問 # 21
What are three possible entry points (pathways) that could be used for launching a cyber attack?
Available Choices (select all choices that are correct)
- A. LAN, portable media, and hard drives
- B. LAN, power source, and wireless OD.
- C. LAN, WAN, and hard drive
- D. LAN, portable media, and wireless
正解:D
質問 # 22
Which characteristic is MOST closely associated with the deployment of a demilitarized zone (DMZ)?
Available Choices (select all choices that are correct)
- A. Level 4 systems must use the DMZ to communicate with Level 3 and below.
- B. Level 0 can only interact with Level 1 through the firewall.
- C. Email is prevented, thereby mitigating the risk of phishing attempts.
- D. Internet access through the firewall is allowed.
正解:A
質問 # 23
In which layer is the physical address assigned?
Available Choices (select all choices that are correct)
- A. Layer 1
- B. Layer 3
- C. Layer 7
- D. Layer 2
正解:D
質問 # 24
At Layer 4 of the Open Systems Interconnection (OSI) model, what identifies the application that will handle a
packet inside a host?
Available Choices (select all choices that are correct)
- A. A TCP/UDP host ID
- B. ATCP/UDP port number
- C. ATCP/UDP application ID
- D. ATCP/UDP registry number
正解:B
質問 # 25
Which of the following is the BEST reason for periodic audits?
Available Choices (select all choices that are correct)
- A. To confirm audit procedures
- B. To adhere to a published or approved schedule
- C. To validate that security policies and procedures are performing
- D. To meet regulations
正解:C
質問 # 26
What is a commonly used protocol for managing secure data transmission over a Virtual Private Network
(VPN)?
Available Choices (select all choices that are correct)
- A. SSH
- B. HTTPS
- C. IPSec
- D. MPLS
正解:C
質問 # 27
Within the National Institute of Standards and Technoloqv Cybersecuritv Framework v1.0 (NIST CSF), what
is the status of the ISA 62443 standards?
Available Choices (select all choices that are correct)
- A. They are used as normative references.
- B. They are used as informative references.
- C. They are under consideration for future use.
- D. They are not used.
正解:B
質問 # 28
Which of the following refers to internal rules that govern how an organization protects critical system
resources?
Available Choices (select all choices that are correct)
- A. Formal guidance
- B. Security policy
D- Code of conduct - C. Legislation
正解:B
質問 # 29
......
ISA-IEC-62443問題集PDF、ISA-IEC-62443最速合格したいなら:https://jp.fast2test.com/ISA-IEC-62443-premium-file.html
ISA-IEC-62443練習試験問題集試験:https://drive.google.com/open?id=1JGY0fpJqVnun1zfuyzds-Tbv0fNCumdY