Summary of results
Your score: 74% (185 of 250) questions.
Total time used: 2 hours 9 minutes 21 seconds (average 31 seconds per question).
Score distributed by domain: (some questions are in several domains)
86% (51 of 59) CISSP CBK domain #1 - Access Control
72% (52 of 72) CISSP CBK domain #2 - Telecommunications and Network Security
81% (13 of 16) CISSP CBK domain #3 - Information Security and Risk Management
82% (14 of 17) CISSP CBK domain #4 - Application Security
39% (12 of 31) CISSP CBK domain #5 - Cryptography
64% (14 of 22) CISSP CBK domain #6 - Security Architecture and Design
83% (10 of 12) CISSP CBK domain #7 - Operations Security
81% (13 of 16) CISSP CBK domain #8 - BCP and DRP
100% (13 of 13) CISSP CBK domain #9 - Legal, Regulations, Compliance and Investigations
67% (6 of 9) CISSP CBK domain #10 - Physical (Environmental) Security
Score distributed by topic:
67% (2 of 3) Access control administration
100% (2 of 2) Access control attacks and countermeasures
0% (0 of 1) Access control objectives
100% (2 of 2) Access control techniques
100% (1 of 1) Access matrix model
100% (2 of 2) Address Resolution Protocol (ARP and RARP)
100% (1 of 1) Alternate processes
100% (2 of 2) Alternate sites
100% (1 of 1) Application system controls
100% (3 of 3) Attacker types, profiles and motivations
57% (4 of 7) Backups and offsite storage
100% (3 of 3) Bell-LaPadula access control model
100% (6 of 6) Biometrics
100% (1 of 1) Buffer overflows
67% (2 of 3) Business Impact Assessment (BIA)
100% (1 of 1) Callback systems
100% (1 of 1) Certification and accreditation
100% (1 of 1) Certification authorities (CA)
100% (1 of 1) Change and configuration control/management
0% (0 of 1) Clipper Chip
100% (1 of 1) Clipping level
50% (1 of 2) Common computer and network organizations, architectures and designs
100% (1 of 1) Communication services
33% (1 of 3) Communications and networks attacks and countermeasures
100% (1 of 1) Computer crime evidence
100% (1 of 1) Computer crime types
100% (1 of 1) Computer laws
75% (3 of 4) Confidentiality, integrity and availability
0% (0 of 1) Configuration management
0% (0 of 1) Contigency planning testing
71% (5 of 7) Control types
33% (1 of 3) Covert channels
0% (0 of 2) Cryptography attacks and countermeasures
100% (1 of 1) Cryptography history
0% (0 of 1) Cryptography issues
75% (3 of 4) Data Encryption Standard (DES)
100% (1 of 1) Data classification
50% (1 of 2) Data remanence and object reuse protection
100% (2 of 2) Database management systems
100% (1 of 1) Database views
50% (1 of 2) Demilitarized zones (DMZ) and Bastion hosts
100% (4 of 4) Denial of service attacks
50% (1 of 2) Digital signatures
100% (2 of 2) Disaster recovery planning
0% (0 of 1) Discretionary access control
100% (1 of 1) Domain Name System (DNS)
100% (1 of 1) Due care and due diligence
100% (2 of 2) E-mail security
100% (2 of 2) Elements of contingency planning
0% (0 of 1) Elliptic Curve Cryptosystems (ECC)
100% (1 of 1) Employment policies and practices
0% (0 of 1) End-user involvement in BCP/DRP
0% (0 of 1) Ethernet
100% (1 of 1) Evidence collection and preservation
100% (3 of 3) Evidence types and admissibility
50% (1 of 2) Facility Requirements
67% (2 of 3) File and data owners, custodians, and users
67% (2 of 3) Fire and smoke detection and suppression systems
100% (1 of 1) Firewall rules
67% (2 of 3) Firewalls and packet filters
100% (1 of 1) Flooding attacks
100% (1 of 1) HVAC considerations
100% (1 of 1) Hacker tools
100% (1 of 1) Host-based intrusion detection
100% (1 of 1) Humidity and environmental controls
50% (3 of 6) IPSec
100% (1 of 1) ISC2 code of Ethics
67% (2 of 3) ISO/OSI model and layers
67% (2 of 3) Identification and authentication techniques
100% (1 of 1) Illegal and inappropriate activities
100% (1 of 1) Import/export laws
100% (1 of 1) Incident handling and response
100% (1 of 1) Individual accountability
0% (0 of 1) Information and asset valuation
0% (0 of 1) Information labels
100% (1 of 1) Initialization and failure states
100% (1 of 1) Input and parameter checking
100% (3 of 3) Inter-networking devices and connectivity hardware
100% (2 of 2) Internet, Intranets and Extranets
100% (1 of 1) Job rotation
80% (4 of 5) Kerberos
0% (0 of 1) Key distribution and management
0% (0 of 1) Knowledge-based systems
100% (1 of 1) LAN Transmission methods
100% (2 of 2) Local area networks (LANs)
100% (1 of 1) Malicious code
100% (1 of 1) Management involvement in BCP/DRP
100% (2 of 2) Mandatory access control
100% (1 of 1) Masquerading attacks
0% (0 of 1) Media access methods
67% (2 of 3) Message digests and hash functions
100% (1 of 1) Mobile, wireless and satellite technologies and security
83% (5 of 6) Monitoring and intrusion detection systems (IDS)
100% (1 of 1) Multi-factor authentication
100% (1 of 1) Network Address Translation (NAT)
100% (1 of 1) Network Services
100% (3 of 3) Network and communication protocols
100% (3 of 3) Network availability
100% (1 of 1) Network security
100% (1 of 1) Network sniffing
67% (2 of 3) Network topologies
100% (2 of 2) Non-discretionary access control
0% (0 of 1) Non-repudiation
100% (1 of 1) Objects and subjects
100% (1 of 1) One-time passwords
100% (3 of 3) Operations security threats and Countermeasures
40% (2 of 5) Orange Book (TCSEC) classes and required functionality
50% (1 of 2) Packet switching
100% (1 of 1) Passphrases
67% (2 of 3) Password management
67% (2 of 3) Passwords
67% (4 of 6) Physical media characteristics
100% (2 of 2) Physical security controls
100% (1 of 1) Point to point Protocol (PPP)
100% (1 of 1) Polyinstanciation
0% (0 of 1) Power considerations
0% (0 of 1) Pretty Good Privacy (PGP)
100% (2 of 2) Programming languages, techniques and tools
100% (1 of 1) Project planning
100% (1 of 1) Protection domains
50% (1 of 2) Public key infrastructure (PKI)
100% (4 of 4) RAID Technology
100% (1 of 1) Recovery and redundancy techniques
0% (0 of 1) Recovery strategy
100% (2 of 2) Remote Authentication Dial-In Service (RADIUS)
100% (2 of 2) Replay attacks
0% (0 of 1) Resource misuse and abuse
100% (1 of 1) Risk assessment
0% (0 of 2) Rivest Shamir Adleman (RSA)
0% (0 of 1) Roles and responsibilities
100% (1 of 1) Routing protocols
100% (1 of 1) SESAME
0% (0 of 1) Secret (Symmetric) Key Cryptography
0% (0 of 2) Secret Key Algorithms
100% (1 of 1) Secure Electronic Transactions (SET) Protocol
0% (0 of 1) Secure Shell (SSH)
50% (1 of 2) Secure Sockets Layer (SSL)
100% (1 of 1) Security awareness, training and education
100% (1 of 1) Security controls
0% (0 of 1) Security design and control architecture
100% (1 of 1) Security guards, guns, dogs
100% (3 of 3) Security management practices and planning
0% (0 of 1) Security modes
0% (0 of 1) Sensitivity labels
60% (3 of 5) Separation of duties and responsibilities
100% (2 of 2) Session hijacking
100% (1 of 1) Single Sign-On (SSO)
100% (1 of 1) Social engineering
100% (1 of 1) Statistical intrusion detection
33% (1 of 3) Stream ciphers and block ciphers
0% (0 of 2) Symmetric vs. asymmetric encryption
0% (0 of 1) System accountability
100% (2 of 2) System and application testing
50% (1 of 2) System development life cycle
100% (1 of 1) System protection mechanisms
50% (1 of 2) TCP and UDP
100% (1 of 1) TCP/IP addressing
100% (1 of 1) TCP/IP characteristics and vulnerabilities
100% (1 of 1) TCP/IP model and layers
100% (1 of 1) Technical physical security controls
100% (2 of 2) Telecommunication infrastructures
100% (1 of 1) Threats and vulnerabilites
100% (1 of 1) Tokens
100% (1 of 1) Trade secrets
100% (1 of 1) Trap doors
100% (1 of 1) Trusted Computing Base (TCB)
100% (1 of 1) Trusted facility management
100% (1 of 1) Trusted recovery
100% (1 of 1) Viruses
100% (1 of 1) Wardialing
100% (1 of 1) Wide Area Networks (WANs)
0% (0 of 1) X.509 Digital certificates
The following domains should be reviewed:
* CISSP CBK domain #2 - Telecommunications and Network Security
* CISSP CBK domain #5 - Cryptography
* CISSP CBK domain #6 - Security Architecture and Design
* CISSP CBK domain #10 - Physical (Environmental) Security