Mock Exam Part 1: General Security Concepts and Threats
Answer 25 questions covering security fundamentals, threat actors, cryptography basics, and social engineering — matching the weight of domain 1 and 2 on the real exam.
Mock Exam Part 1: How to Use This Section
Welcome to Mock Exam Part 1, covering Security+ Domains 1 and 2: General Security Concepts (12%) and Threats, Vulnerabilities, and Mitigations (22%). Together these account for 34% of your exam score. Each scene presents a question followed by the correct answer and a full explanation of why the other options are wrong. To maximize value: read the question, form your own answer, then read the explanation. Track which questions you miss by topic — this identifies your weak areas for targeted final review. Domains 1 and 2 together represent about 30 questions on the real exam.
CIA Triad and Authentication Factors
Q1 — CIA Triad: An organization encrypts customer data before storing it. Which CIA principle is primarily addressed? Answer: Confidentiality — encryption prevents unauthorized disclosure. Integrity is addressed by hashing; Availability by redundancy.
Q2 — Authentication Factors: A bank requires a PIN and fingerprint scan. What factors are used? Answer: Something you know (PIN) + Something you are (fingerprint/biometric). The three factors are Know / Have / Are. Two factors of the same type (two passwords) is two-step verification, not true MFA. Geolocation adds a fourth factor: Somewhere you are.
All lessons in this course
- Mock Exam Part 1: General Security Concepts and Threats
- Mock Exam Part 2: Security Architecture and Infrastructure
- Mock Exam Part 3: Operations, Incident Response, and Forensics
- Mock Exam Review: Scoring, Analysis, and Study Plan