Transcription
IBMP2090-075IBM InfoSphere Guardium Technical(R) Mastery Testv1http://killexams.com/exam-detail/P2090-075
Answer: BQUESTION: 34Data is collected through an audit policy that uses an Allow action rule. Which of thefollowing cannot be viewed when reporting on these data?A. SQL constructB. SQL timestampC. Client IPD. SQL valuesAnswer: DQUESTION: 35The query builder contains all of the following panes except for:A. The Entity ListB. The Query FieldsC. The Query ID SelectorD. The Query ConditionsAnswer: CQUESTION: 36Which of the following is true about Guardium's entitlement reports?A. Guardium includes a set of built-in entitlement report definitions (i.i e. Oracle) andthe ability to create custom entitlement reports for any other relational database.B. Guardium does not offer standard built-in entitlement reports and the user mustcreate these reports based on their database specifications.C. Guardium includes Oracle entitlement reports as a standard feature, howeverreports for all other database engines (i.i e. IBM DB2) can be downloaded via asubscription service.D. Guardium's entitlement reporting is an optional feature that requires a separatelicense.12
Answer: AQUESTION: 37What is a Guardium vulnerability assessment (VA)?A. A test that employs state-of-the-art algorithms to determine the potential risks ofyour network.B. A series of predefined and custom tests that allow customers to automaticallyidentify and address database vulnerabilities.C. An optional service from Guardium where a security specialist visits a customer'ssite before a proof-of-concept engagement to determine the customer's specificrequirements.D. A piece of software distributed as a multi-platform plug-in that allows a supporteddatabase management system to constantly monitor potential threats and report onthese periodically.Answer: BQUESTION: 38What are the four types of tests that can be used in a Guardium vulnerabilityassessment?A. User defined, observed behavioral, database configuration and server configurationB. Predefined, subscription-based, observed behavioral and configuration vulnerabilityC. OS-level, native, special and externalD. OS-level, kernel, special and externalAnswer: AQUESTION: 39What is Guardium's Database Protection Subscription Service?A. A service that may be purchased separately in order to enable Guardium tosafeguard database management systems other than Sybase AES.B. A subscription to the latest updates for the various Guardium product components.C. An additional package required for the vulnerability and threat managementsolutions to integrate with CAS.13
D. A service that provides the Guardium instance with quarterly updates to its built-inassessment tests, so the assessment is up-to-date with industry best practices and newvulnerabilities.Answer: DQUESTION: 40A database known to contain the medical records of a foreign head of state is accessedat 1:30AM. No security mechanism is installed and so this highly sensitiveinformation is leaked to the medi a. Could this breach have been detected by runninga Guardium vulnerability assessment without creating any custom assessment tests?A. No, this type of test is not included with Guardium.B. Yes, but only if the appliance includes Guardium's Database ProtectionSubscription service.C. Yes, after hours login detection is one of the standard behavioral vulnerability testsincluded with Guardium.D. Yes, however this particular test is only available for IBM DB2 and Informixservers.Answer: C14
For More exams visit https://killexams.com/vendors-exam-listKill your exam at First Attempt.Guaranteed!
a Guardium vulnerability assessment without creating any custom assessment tests? A. No, this type of test is not included with Guardium. B. Yes, but only if the appliance includes Guardium's Database Protection Subscription service. C. Yes, after hours login detection is one of the standard behavioral vulnerability
