CompTIA Security+ Certification - JK0-018 Exam Questions [2026]

QUESTION NO: 1
Highly sensitive data is stored in a database and is accessed by an application on a DMZ server. The disk drives on all servers are fully encrypted. Communication between the application server and end-users is also encrypted. Network ACLs prevent any connections to the database server except from the application server. Which of the following can still result in exposure of the sensitive data in the database server?

A. Cross-site scripting B. SQL Injection C. Theft of the physical database server D. Cookies

Correct Answer: B

QUESTION NO: 2
Due to limited resources, a company must reduce their hardware budget while still maintaining availability. Which of the following would MOST likely help them achieve their objectives?

A. Virtualization B. Blade servers C. Remote access D. Network access control

Correct Answer: A

QUESTION NO: 3
Which of the following BEST describes part of the PKI process?

A. User1 hashes data with User2's private key B. User1 encrypts data with User2's public key C. User1 hashes data with User2's public key D. User1 decrypts data with User2's private key

Correct Answer: B

QUESTION NO: 4
A database administrator contacts a security administrator to request firewall changes for a connection to a new internal application. The security administrator notices that the new application uses a port typically monopolized by a virus. The security administrator denies the request and suggests a new port or service be used to complete the application's task. Which of the following is the security administrator practicing in this example?

A. Explicit deny B. Port security C. Implicit deny D. Access control lists

Correct Answer: D

QUESTION NO: 5
A malicious program modified entries in the LMHOSTS file of an infected system. Which of the following protocols would have been affected by this?

A. DNS B. ICMP C. BGP D. NetBIOS

Correct Answer: D

QUESTION NO: 6
Which of the following policies is implemented in order to minimize data loss or theft?

A. Password policy B. Chain of custody C. PII handling D. Zero day exploits

Correct Answer: C

QUESTION NO: 7
While previously recommended as a security measure, disabling SSID broadcast is not effective against most attackers because network SSIDs are:

A. no longer supported in 802.11 protocols. B. contained in certain wireless packets in plaintext. C. no longer used to authenticate to most wireless networks. D. contained in all wireless broadcast packets by default.

Correct Answer: B

QUESTION NO: 8
Pete, an employee, is terminated from the company and the legal department needs documents from his encrypted hard drive. Which of the following should be used to accomplish this task? (Select TWO).

A. Recovery agent B. CRL C. Public key D. Key escrow E. Private hash

Correct Answer: A,D

QUESTION NO: 9
Which of the following application attacks is used to gain access to SEH?

A. Cookie stealing B. Directory traversal C. Buffer overflow D. XML injection

Correct Answer: C

QUESTION NO: 10
An encrypted message is sent using PKI from Sara, a client, to a customer. Sara claims she never sent the message. Which of the following aspects of PKI BEST ensures the identity of the sender?

A. Recovery agents B. CRL C. Trust models D. Non-repudiation

Correct Answer: D

QUESTION NO: 11
Which of the following BEST describes a demilitarized zone?

A. A network where all servers exist and are monitored. B. A sterile, isolated network segment with access lists. C. A buffer zone between protected and unprotected networks. D. A private network that is protected by a firewall and a VLAN.

Correct Answer: C