4.9. Answers to Review Questions

  1. D. The primary goal of auditing is to check compliance with security policy. Virus infection detection is handed by a virus scanner. Rogue service detection is performed manually or with a sniffer. Port scanning is performed with a port-scanning tool.

  2. D. The annual loss expectancy (ALE) represents the total potential loss a company may experience within a single year due to a specific risk to an asset. EF is the percentage of asset value loss that would occur if a risk was realized. SLE is the potential dollar value loss from a single risk realization incident. ARO is the statistical probability that a specific risk may be realized a certain number of times in a year.

  3. B. An asset is anything used in a work task. ...

Get CompTIA Security+™: Review Guide now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial