Testinside cisco CCSP 642-542

642-542 CSI
Cisco SAFE Implementation Exam

Exam Number: 642-542
Associated Certifications: CCSP
Duration: 105 minutes (70-80 questions)
Available Languages: English
Click Here to Register: Pearson VUE or Prometric
Exam Policies: Read current policies and requirements
Exam Tutorial: Review type of exam questions

Exam Description Exam Topics Recommended Training Additional Resources
Exam Description
The Cisco SAFE Implementation 642-542 CSI exam provides a recertification assessment for those candidates who currently hold a CCSP certification. This exam tests the knowledge and skills needed to use the principles and axioms presented in the SAFE SMR, Enterprise, IP Telephony and Wireless LAN White Papers, and to implement them on specific security devices. The primary focus is on the labs, which allows the student to build complete end-to-end security solutions using SAFE White Papers as the blueprint. The configuration and functionality of the following devices in a SAFE SMR network are described in detail: IOS routers, PIX Firewalls, VPN Concentrators, Cisco IDS Sensors, Cisco Security Agent and the Cisco VPN Client. Basic implementation of a SAFE wireless LAN is also covered.

Exam Topics
The following information provides general guidelines for the content likely to be included on the exam. However, other related topics may also appear on any specific delivery of the exam. In order to better reflect the contents of the exam and for clarity purposes the guidelines below may change at any time without notice.

Security Fundamentals
Need for network security
Components of a complete security policy
Primary network threats and attacks
Common attacks and recommended mitigation techniques
Security issues implicit in common management protocols

SAFE Blueprint Overview
SAFE Blueprint Overview
Design Fundamentals
SAFE Axioms

The Cisco Security Portfolio
Cisco Security Portfolio Overview
Secure Connectivity-Cisco VPN 3000 Concentrator and Cisco VPN Optimized IOS
Perimeter Security Firewalls-Cisco PIX Firewall and Cisco IOS Firewall
Intrusion Protection-IDS
Identity-CSACS
Security Management-VMS
Cisco AVVID

SAFE Small Network Design
Small Network Design Overview
Small Network Corporate Internet Module
Small Network Campus Module
Implementation-ISP Router
Implementation-Cisco IOS Firewall
Implementation-PIX Firewall
Implementation-CSA

SAFE Midsize Network Design
Midsize Network Design
Midsize Network Corporate Internet Module Design Guidelines
Midsize Network Campus Module
Midsize Network Campus Module Design Guidelines
Midsize Network WAN Module
Implementation-ISP Router and Edge Router
Implementation-Network IPS
Implementation-VPN 3000 Concentrator
Implementation-Layer 3 Switch

SAFE Remote Network Design
Remote-User Network Overview
Key Devices and Threat Mitigation
Software Client Option
Remote Site Firewall Option
VPN 3002 Hardware Client Option
Remote Site Router Option

SAFE Enterprise Network Design
Enterprise Network Design Overview
Enterprise Campus
Enterprise Network Edge

SAFE IP Telephony Design
IP Telephony Concepts, Caveats and Axioms
IP Telephony Product Portfolio
IP Telephony Design Considerations
IP Telephony Design for Small, Medium and Large Network

SAFE Wireless LAN Design
Wireless LAN Security Concepts, Caveats and Axioms
WLAN Security Extensions
Cisco WLAN Product Portfolio
WLAN Design Approach
Standard WLAN Design
WLAN Design for Small, Medium, Enterprise and Remote Network
WLAN Implementation

“Cisco SAFE Implementation Exam”, also known as 642-542 exam, is a Cisco certification.
Preparing for the 642-542 exam? Searching 642-542 Test Questions, 642-542 Practice Exam, 642-542 Dumps?

Free 642-542 Demo Download
TestInside offers free demo for 642-542 exam ( Cisco SAFE Implementation Exam). You can check out the interface, question quality and usability of our practice exams before you decide to buy it. We are the only one site can offer demo for almost all products.

QUESTION 21:
Which attack is executed by Java applets and ActiveX controls?
A. Brute force
B. IP spoofing
C. DoS
D. Application layer
Answer: D
Explanation:
New Internet technologies such as Java and ActiveX, designed to better enable
cross-platform communication, have drastically altered the level and approach of
computer damaging elements. Anyone seeking to maliciously manipulate corporate
information or attack corporate computers now has an accommodating Java and ActiveX
environment that offers easy, quick, and discreet methods of attack. Mini-applications
like Java applets enter network computers whenever users access Java-enabled Web sites

or use Web browsers, and this distributed computing allows unchecked applets into the
network without any warning, announcement, or even opportunity for users to refuse
them. SurfinGate technology prevents Java applet attacks that can bypass built-in
security systems like the Java Security Manager, offering extensive management controls
and features designed for the corporation.
Reference: Cisco Systems Joins the Finjan Java Security Alliance
QUESTION 22:
The security team at Certkiller Inc. is working on securing the network by understanding
the type of threats. What type of threat consists mainly of random hackers using various
common tools (such as malicious shell scripts, password crackers, credit card number
generators, and dialer daemons)?
A. A internal threat
B. An external threat
C. A structured threat
D. A unstructured threat
Answer: D
Explanation:
Unstructured threats – These threats primarily consist of random hackers using various
common tools, such as malicious shell scripts, password crackers, credit card number
generators, and dialer daemons. Although hackers in this category may have malicious
intent, many are more interested in the intellectual challenge of cracking safeguards than
in creating havoc.
Reference: Cisco Courseware p.2-14
QUESTION 23:
What service is provided by CSA Profiler?
A. Profiler analyzes applications to help in generating useful policies.
B. Profiled monitors and logs security events that occur on CSA protected hosts.
C. Profiler provides a COM component utility that installs with each CSA.
D. Profiler configures agent kits that are deployed on CSA protected hosts.
Answer: A

Testinside cisco CCSP 642-542 Questions and Answers : 224 Q&A
Updated: October 2nd , 2008
Price: $129.99 $89.99
Free download：pass4sure CCSP 642-542
Free download：testking CCSP 642-542
password : www.ciscoexams.org