Foundational cybersecurity certification covering security concepts, threats and mitigations, security architecture, operations, and program management for the CompTIA Security+ SY0-701 exam, with a worked explanation on every practice question.
Free sample questions
No account needed. Every question has a worked explanation, just like the full bank.
lock_openFree sampleGeneral Security Conceptseasy
A hospital's electronic health record system goes offline for four hours during a ransomware incident, blocking clinicians from reading patient charts. Which pillar of the CIA triad is most directly impacted by this outage?
- AAvailability, because authorised users were unable to access the data when needed.check_circle Correct
- BConfidentiality, because clinicians could not see records they are authorised to view.
- CIntegrity, because the records could not be trusted to be accurate during the outage.
- DNon-repudiation, because the source of the records could not be verified during the outage.
Identify which pillar of the CIA triad is impacted when authorised users cannot reach a system because of an outage. The CIA triad defines confidentiality (preventing unauthorised disclosure), integrity (preventing unauthorised modification), and availability (ensuring timely authorised access). A ransomware-driven outage that prevents clinicians from reading charts directly degrades availability, regardless of whether the data itself was altered or disclosed.
Why A is correct: Availability is the assurance that authorised users can reach systems and data when required. A four-hour outage that blocks clinical access is the textbook impact on availability.
Why B is wrong: Confidentiality concerns unauthorised disclosure, not denial of access to authorised users. The incident may also affect confidentiality if data was exfiltrated, but the four-hour read outage described is fundamentally an availability problem, so this is the wrong best fit.
Why C is wrong: Integrity concerns unauthorised modification or corruption of data. The scenario describes inability to reach the records, not altered content, so integrity is a tempting but incorrect choice.
Why D is wrong: Non-repudiation prevents a party from denying an action they performed and is usually achieved through digital signatures and logging. It is not the pillar harmed by a system being offline, so this option is incorrect.
lock_openFree sampleGeneral Security Conceptseasy
A finance manager denies approving a large supplier payment, but the workflow tool shows the approval was made using her smart card and signed with her private key, with a tamper-evident audit log. Which fundamental security concept does this control set most directly support?
- AConfidentiality, because the smart card encrypts the approval so only authorised parties can read it.
- BNon-repudiation, because the cryptographic signature and audit trail prevent her from credibly denying the approval.check_circle Correct
- CAvailability, because the workflow tool ensures the approval is always accessible to auditors.
- DAuthorisation, because the smart card grants the manager permission to approve the payment.
Recognise non-repudiation as the property that prevents an actor from denying an action they took. Non-repudiation is achieved by combining a strong unique authenticator, such as a private key held on a smart card, with a digital signature over the action and a trustworthy log. Together these provide cryptographic and procedural evidence that ties the specific identity to the specific action, so the actor cannot credibly deny it later.
Why A is wrong: Smart cards can encrypt data, but the question is about the manager denying she approved the transaction, not about preventing disclosure. Confidentiality is a plausible but wrong fit.
Why B is correct: Non-repudiation is provided by binding an action to an identity through a unique authenticator, such as a private key on a smart card, plus a trustworthy log. The scenario is the textbook use case.
Why C is wrong: Availability concerns timely access for authorised users. The control described is about proving who acted, not about keeping the system reachable, so this is tempting but incorrect.
Why D is wrong: Authorisation decides what an authenticated identity is permitted to do. The scenario centres on proving the action occurred and tying it to the manager, which is non-repudiation rather than authorisation.
lock_openFree sampleGeneral Security Conceptseasy
A new employee signs in with her username and password, then approves a push prompt on her phone. The system then checks her role and decides she may read invoices but not approve them. Which AAA stage is performing the second check, after authentication has succeeded?
- AIdentification, because the system is matching her username to a stored account.
- BAuthentication, because the push prompt confirms she is who she claims to be.
- CAuthorisation, because role membership determines which actions she is permitted to perform.check_circle Correct
- DAccounting, because the system is recording what she is allowed to do for later review.
Distinguish authentication from authorisation within the AAA model in an applied access scenario. AAA separates authentication (proving identity), authorisation (deciding what the identity is allowed to do), and accounting (recording what the identity did). Once the password plus push prompt has authenticated the user, the role-to-permission lookup that restricts her to reading invoices is an authorisation decision, not a re-authentication.
Why A is wrong: Identification is when the user first claims an identity, typically by entering a username. It happens before authentication and is not the stage that decides what she may do afterwards.
Why B is wrong: Authentication verifies the claimed identity using factors such as a password plus a push prompt. The question explicitly says this stage has already succeeded, so it is not the answer.
Why C is correct: Authorisation is the AAA stage that enforces what an authenticated identity is allowed to do. Mapping her role to read-only invoice access is a classic authorisation decision.
Why D is wrong: Accounting records what an authenticated user actually does, such as logging the invoice she opened. It is logging, not the permission decision itself, so it is a tempting but wrong choice.
Frequently asked questions
- How many questions are on the SY0-701 exam?
- The CompTIA Security+ (SY0-701) (SY0-701) exam has Maximum of 90 questions questions and runs for 90 minutes. The format is multiple choice and performance-based, at pearson vue testing center or online proctored.
- What score do I need to pass SY0-701?
- The pass mark is 750 / 900. Examworthy gives you a per-domain readiness score so you can see which domains are holding you back before you book.
- How much does the SY0-701 exam cost?
- The exam costs 425 USD to sit. Practising on Examworthy is free to start, with a worked explanation on every question.
- How does Examworthy help me prepare for SY0-701?
- Every practice question carries a worked explanation and a per-distractor rationale, mapped to the official blueprint domains. You learn why each answer is right or wrong, not just the letter.
- Is Examworthy affiliated with CompTIA?
- No. Examworthy is not affiliated with or endorsed by CompTIA. Our questions are original, blueprint-aligned practice material; we never reproduce live exam items.
Examworthy is not affiliated with or endorsed by CompTIA. All questions are original, blueprint-aligned practice material. We never reproduce live exam items. SY0-701 and related marks belong to their respective owners.
