← All answer keys
IT CertificationsComprehensive Study Set

Nist 800 170

170 questions across 0 topics. Use the find bar or section chips to jump to what you need.

Community-sourced. Answers may be wrong or out of date. Always verify with your official training portal before submitting. Not affiliated with any branch, agency, or vendor. Details.
QUESTION 1

AC-1

ANSWER

ACCESS CONTROL POLICY AND PROCEDURES

QUESTION 2

AC-2

ANSWER

ACCOUNT MANAGEMENT

QUESTION 3

AC-3

ANSWER

ACCESS ENFORCEMENT

QUESTION 4

AC-4

ANSWER

INFORMATION FLOW ENFORCEMENT

QUESTION 5

AC-5

ANSWER

SEPARATION OF DUTIES

QUESTION 6

AC-6

ANSWER

LEAST PRIVILEGE

QUESTION 7

AC-7

ANSWER

UNSUCCESSFUL LOGON ATTEMPTS

QUESTION 8

AC-8

ANSWER

SYSTEM USE NOTIFICATION

QUESTION 9

AC-10

ANSWER

CONCURRENT SESSION CONTROL

QUESTION 10

AC-11

ANSWER

SESSION LOCK

QUESTION 11

AC-12

ANSWER

SESSION TERMINATION

QUESTION 12

AC-14

ANSWER

PERMITTED ACTIONS WITHOUT IDENTIFICATION OR AUTHENTICATION

QUESTION 13

AC-17

ANSWER

REMOTE ACCESS

QUESTION 14

AC-18

ANSWER

WIRELESS ACCESS

QUESTION 15

AC-19

ANSWER

ACCESS CONTROL FOR MOBILE DEVICES

QUESTION 16

AC-20

ANSWER

USE OF EXTERNAL INFORMATION SYSTEMS

QUESTION 17

AC-21

ANSWER

INFORMATION SHARING

QUESTION 18

AC-22

ANSWER

PUBLICLY ACCESSIBLE CONTENT

QUESTION 19

AT-1

ANSWER

SECURITY AWARENESS AND TRAINING POLICY AND PROCEDURES

QUESTION 20

AT-2

ANSWER

SECURITY AWARENESS TRAINING

QUESTION 21

AT-3

ANSWER

ROLE-BASED SECURITY TRAINING

QUESTION 22

AT-4

ANSWER

SECURITY TRAINING RECORDS

QUESTION 23

AU-1

ANSWER

AUDIT AND ACCOUNTABILITY POLICY AND PROCEDURES

QUESTION 24

AU-2

ANSWER

AUDIT EVENTS

QUESTION 25

AU-3

ANSWER

CONTENT OF AUDIT RECORDS

QUESTION 26

AU-4

ANSWER

AUDIT STORAGE CAPACITY

QUESTION 27

AU-5

ANSWER

RESPONSE TO AUDIT PROCESSING FAILURES

QUESTION 28

AU-6

ANSWER

AUDIT REVIEW, ANALYSIS, AND REPORTING

QUESTION 29

AU-7

ANSWER

AUDIT REDUCTION AND REPORT GENERATION

QUESTION 30

AU-8

ANSWER

TIME STAMPS

QUESTION 31

AU-9

ANSWER

PROTECTION OF AUDIT INFORMATION

QUESTION 32

AU-10

ANSWER

NON-REPUDIATION

QUESTION 33

AU-11

ANSWER

AUDIT RECORD RETENTION

QUESTION 34

AU-12

ANSWER

AUDIT GENERATION

QUESTION 35

CA-1

ANSWER

SECURITY ASSESSMENT AND AUTHORIZATION POLICY AND PROCEDURES

QUESTION 36

CA-2

ANSWER

SECURITY ASSESSMENTS

QUESTION 37

CA-3

ANSWER

SYSTEM INTERCONNECTIONS

QUESTION 38

CA-5

ANSWER

PLAN OF ACTION AND MILESTONES

QUESTION 39

CA-6

ANSWER

SECURITY AUTHORIZATION

QUESTION 40

CA-7

ANSWER

CONTINUOUS MONITORING

QUESTION 41

CA-8

ANSWER

PENETRATION TESTING

QUESTION 42

CA-9

ANSWER

INTERNAL SYSTEM CONNECTIONS

QUESTION 43

CM-1

ANSWER

CONFIGURATION MANAGEMENT POLICY AND PROCEDURES

QUESTION 44

CM-2

ANSWER

BASELINE CONFIGURATION

QUESTION 45

CM-3

ANSWER

CONFIGURATION CHANGE CONTROL

QUESTION 46

CM-4

ANSWER

SECURITY IMPACT ANALYSIS

QUESTION 47

CM-5

ANSWER

ACCESS RESTRICTIONS FOR CHANGE

QUESTION 48

CM-6

ANSWER

CONFIGURATION SETTINGS

QUESTION 49

CM-7

ANSWER

LEAST FUNCTIONALITY

QUESTION 50

CM-8

ANSWER

INFORMATION SYSTEM COMPONENT INVENTORY

QUESTION 51

CM-9

ANSWER

CONFIGURATION MANAGEMENT PLAN

QUESTION 52

CM-10

ANSWER

SOFTWARE USAGE RESTRICTIONS

QUESTION 53

CM-11

ANSWER

USER-INSTALLED SOFTWARE

QUESTION 54

CP-1

ANSWER

CONTINGENCY PLANNING POLICY AND PROCEDURES

QUESTION 55

CP-2

ANSWER

CONTINGENCY PLAN

QUESTION 56

CP-3

ANSWER

CONTINGENCY TRAINING

QUESTION 57

CP-4

ANSWER

CONTINGENCY PLAN TESTING

QUESTION 58

CP-6

ANSWER

ALTERNATE STORAGE SITE

QUESTION 59

CP-7

ANSWER

ALTERNATE PROCESSING SITE

QUESTION 60

CP-8

ANSWER

TELECOMMUNICATIONS SERVICES

QUESTION 61

CP-9

ANSWER

INFORMATION SYSTEM BACKUP

QUESTION 62

CP-10

ANSWER

INFORMATION SYSTEM RECOVERY AND RECONSTITUTION

QUESTION 63

IA-1

ANSWER

IDENTIFICATION AND AUTHENTICATION POLICY AND PROCEDURES

QUESTION 64

IA-2

ANSWER

IDENTIFICATION AND AUTHENTICATION (ORGANIZATIONAL USERS)

QUESTION 65

IA-3

ANSWER

DEVICE IDENTIFICATION AND AUTHENTICATION

QUESTION 66

IA-4

ANSWER

IDENTIFIER MANAGEMENT

QUESTION 67

IA-5

ANSWER

AUTHENTICATOR MANAGEMENT

QUESTION 68

IA-6

ANSWER

AUTHENTICATOR FEEDBACK

QUESTION 69

IA-7

ANSWER

CRYPTOGRAPHIC MODULE AUTHENTICATION

QUESTION 70

IA-8

ANSWER

IDENTIFICATION AND AUTHENTICATION (NON-ORGANIZATIONAL USERS)

QUESTION 71

IR-1

ANSWER

INCIDENT RESPONSE POLICY AND PROCEDURES

QUESTION 72

IR-2

ANSWER

INCIDENT RESPONSE TRAINING

QUESTION 73

IR-3

ANSWER

INCIDENT RESPONSE TESTING

QUESTION 74

IR-4

ANSWER

INCIDENT HANDLING

QUESTION 75

IR-5

ANSWER

INCIDENT MONITORING

QUESTION 76

IR-6

ANSWER

INCIDENT REPORTING

QUESTION 77

IR-7

ANSWER

INCIDENT RESPONSE ASSISTANCE

QUESTION 78

IR-8

ANSWER

INCIDENT RESPONSE PLAN

QUESTION 79

MA-1

ANSWER

SYSTEM MAINTENANCE POLICY AND PROCEDURES

QUESTION 80

MA-2

ANSWER

CONTROLLED MAINTENANCE

QUESTION 81

MA-3

ANSWER

MAINTENANCE TOOLS

QUESTION 82

MA-4

ANSWER

NONLOCAL MAINTENANCE

QUESTION 83

MA-5

ANSWER

MAINTENANCE PERSONNEL

QUESTION 84

MA-6

ANSWER

TIMELY MAINTENANCE

QUESTION 85

MP-1

ANSWER

MEDIA PROTECTION POLICY AND PROCEDURES

QUESTION 86

MP-2

ANSWER

MEDIA ACCESS

QUESTION 87

MP-3

ANSWER

MEDIA MARKING

QUESTION 88

MP-4

ANSWER

MEDIA STORAGE

QUESTION 89

MP-5

ANSWER

MEDIA TRANSPORT

QUESTION 90

MP-6

ANSWER

MEDIA SANITIZATION

QUESTION 91

MP-7

ANSWER

MEDIA USE

QUESTION 92

PE-1

ANSWER

PHYSICAL AND ENVIRONMENTAL PROTECTION POLICY AND PROCEDURES

QUESTION 93

PE-2

ANSWER

PHYSICAL ACCESS AUTHORIZATIONS

QUESTION 94

PE-3

ANSWER

PHYSICAL ACCESS CONTROL

QUESTION 95

PE-4

ANSWER

ACCESS CONTROL FOR TRANSMISSION MEDIUM

QUESTION 96

PE-5

ANSWER

ACCESS CONTROL FOR OUTPUT DEVICES

QUESTION 97

PE-6

ANSWER

MONITORING PHYSICAL ACCESS

QUESTION 98

PE-8

ANSWER

VISITOR ACCESS RECORDS

QUESTION 99

PE-9

ANSWER

POWER EQUIPMENT AND CABLING

QUESTION 100

PE-10

ANSWER

EMERGENCY SHUTOFF

QUESTION 101

PE-11

ANSWER

EMERGENCY POWER

QUESTION 102

PE-12

ANSWER

EMERGENCY LIGHTING

QUESTION 103

PE-13

ANSWER

FIRE PROTECTION

QUESTION 104

PE-14

ANSWER

TEMPERATURE AND HUMIDITY CONTROLS

QUESTION 105

PE-15

ANSWER

WATER DAMAGE PROTECTION

QUESTION 106

PE-16

ANSWER

DELIVERY AND REMOVAL

QUESTION 107

PE-17

ANSWER

ALTERNATE WORK SITE

QUESTION 108

PE-18

ANSWER

LOCATION OF INFORMATION SYSTEM COMPONENTS

QUESTION 109

PL-1

ANSWER

SECURITY PLANNING POLICY AND PROCEDURES

QUESTION 110

PL-2

ANSWER

SYSTEM SECURITY PLAN

QUESTION 111

PL-4

ANSWER

RULES OF BEHAVIOR

QUESTION 112

PL-8

ANSWER

INFORMATION SECURITY ARCHITECTURE

QUESTION 113

PS-1

ANSWER

PERSONNEL SECURITY POLICY AND PROCEDURES

QUESTION 114

PS-2

ANSWER

POSITION RISK DESIGNATION

QUESTION 115

PS-3

ANSWER

PERSONNEL SCREENING

QUESTION 116

PS-4

ANSWER

PERSONNEL TERMINATION

QUESTION 117

PS-5

ANSWER

PERSONNEL TRANSFER

QUESTION 118

PS-6

ANSWER

ACCESS AGREEMENTS

QUESTION 119

PS-7

ANSWER

THIRD-PARTY PERSONNEL SECURITY

QUESTION 120

PS-8

ANSWER

PERSONNEL SANCTIONS

QUESTION 121

RA-1

ANSWER

RISK ASSESSMENT POLICY AND PROCEDURES

QUESTION 122

RA-2

ANSWER

SECURITY CATEGORIZATION

QUESTION 123

RA-3

ANSWER

RISK ASSESSMENT

QUESTION 124

RA-5

ANSWER

VULNERABILITY SCANNING

QUESTION 125

SA-1

ANSWER

SYSTEM AND SERVICES ACQUISITION POLICY AND PROCEDURES

QUESTION 126

SA-2

ANSWER

ALLOCATION OF RESOURCES

QUESTION 127

SA-3

ANSWER

SYSTEM DEVELOPMENT LIFE CYCLE

QUESTION 128

SA-4

ANSWER

ACQUISITION PROCESS

QUESTION 129

SA-5

ANSWER

INFORMATION SYSTEM DOCUMENTATION

QUESTION 130

SA-8

ANSWER

SECURITY ENGINEERING PRINCIPLES

QUESTION 131

SA-9

ANSWER

EXTERNAL INFORMATION SYSTEM SERVICES

QUESTION 132

SA-10

ANSWER

DEVELOPER CONFIGURATION MANAGEMENT

QUESTION 133

SA-11

ANSWER

DEVELOPER SECURITY TESTING AND EVALUATION

QUESTION 134

SA-12

ANSWER

SUPPLY CHAIN PROTECTION

QUESTION 135

SA-15

ANSWER

DEVELOPMENT PROCESS, STANDARDS, AND TOOLS

QUESTION 136

SA-16

ANSWER

DEVELOPER-PROVIDED TRAINING

QUESTION 137

SA-17

ANSWER

DEVELOPER SECURITY ARCHITECTURE AND DESIGN

QUESTION 138

SC-1

ANSWER

SYSTEM AND COMMUNICATIONS PROTECTION POLICY AND PROCEDURES

QUESTION 139

SC-2

ANSWER

APPLICATION PARTITIONING

QUESTION 140

SC-3

ANSWER

SECURITY FUNCTION ISOLATION

QUESTION 141

SC-4

ANSWER

INFORMATION IN SHARED RESOURCES

QUESTION 142

SC-5

ANSWER

DENIAL OF SERVICE PROTECTION

QUESTION 143

SC-7

ANSWER

BOUNDARY PROTECTION

QUESTION 144

SC-8

ANSWER

TRANSMISSION CONFIDENTIALITY AND INTEGRITY

QUESTION 145

SC-10

ANSWER

NETWORK DISCONNECT

QUESTION 146

SC-12

ANSWER

CRYPTOGRAPHIC KEY ESTABLISHMENT AND MANAGEMENT

QUESTION 147

SC-13

ANSWER

CRYPTOGRAPHIC PROTECTION

QUESTION 148

SC-15

ANSWER

COLLABORATIVE COMPUTING DEVICES

QUESTION 149

SC-17

ANSWER

PUBLIC KEY INFRASTRUCTURE CERTIFICATES

QUESTION 150

SC-18

ANSWER

MOBILE CODE

QUESTION 151

SC-19

ANSWER

VOICE OVER INTERNET PROTOCOL

QUESTION 152

SC-20

ANSWER

SECURE NAME / ADDRESS RESOLUTION SERVICE (AUTHORITATIVE SOURCE)

QUESTION 153

SC-21

ANSWER

SECURE NAME / ADDRESS RESOLUTION SERVICE (RECURSIVE OR CACHING RESOLVER)

QUESTION 154

SC-22

ANSWER

ARCHITECTURE AND PROVISIONING FOR NAME / ADDRESS RESOLUTION SERVICE

QUESTION 155

SC-23

ANSWER

SESSION AUTHENTICITY

QUESTION 156

SC-24

ANSWER

FAIL IN KNOWN STATE

QUESTION 157

SC-28

ANSWER

PROTECTION OF INFORMATION AT REST

QUESTION 158

SC-39

ANSWER

PROCESS ISOLATION

QUESTION 159

SI-1

ANSWER

SYSTEM AND INFORMATION INTEGRITY POLICY AND PROCEDURES

QUESTION 160

SI-2

ANSWER

FLAW REMEDIATION

QUESTION 161

SI-3

ANSWER

MALICIOUS CODE PROTECTION

QUESTION 162

SI-4

ANSWER

INFORMATION SYSTEM MONITORING

QUESTION 163

SI-5

ANSWER

SECURITY ALERTS, ADVISORIES, AND DIRECTIVES

QUESTION 164

SI-6

ANSWER

SECURITY FUNCTION VERIFICATION

QUESTION 165

SI-7

ANSWER

SOFTWARE, FIRMWARE, AND INFORMATION INTEGRITY

QUESTION 166

SI-8

ANSWER

SPAM PROTECTION

QUESTION 167

SI-10

ANSWER

INFORMATION INPUT VALIDATION

QUESTION 168

SI-11

ANSWER

ERROR HANDLING

QUESTION 169

SI-12

ANSWER

INFORMATION HANDLING AND RETENTION

QUESTION 170

SI-16

ANSWER

MEMORY PROTECTION

Looking for a different version?

CBTs get updated every year. Search for the exact version you're taking (e.g. "cyber awareness 2025").

Search all study materials