Deal of The Day! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

Eccouncil Exam ECSS Topic 3 Question 102 Discussion

Actual exam question for Eccouncil's ECSS exam
Question #: 102
Topic #: 3
[All ECSS Questions]

Jack, a forensic investigator, was appointed to investigate a Windows-based security incident. In this process, he employed an Autopsy tool to recover the deleted files from unallocated space, which helps in gathering potential evidence.

Which of the following functions of Autopsy helped Jack recover the deleted files?

Show Suggested Answer Hide Answer
Suggested Answer: D

The scenario described involves the use of a RADIUS (Remote Authentication Dial-In User Service) server.RADIUS is a client-server protocol that provides centralized network authentication12. In this case, the access point (client) forwards the connection request to the RADIUS server, which then sends authentication keys to both the access point and the user's laptop (supplicant).This process helps the access point identify the wireless client12.

RADIUS servers are also known as AAA (Authentication, Authorization, and Accounting) servers because they provide these three services1. The authentication process begins when a user attempts to log into the network.Their device will request access either through the use of credentials or by presenting an X.509 digital certificate1.The RADIUS server then compares the user's information with a list of users stored in a directory or IDP (Identity Provider)1.

Therefore, the authentication method demonstrated in the scenario iscentralized authentication(Option D), where a central server (in this case, the RADIUS server) handles the authentication of users.


by Devora at Mar 08, 2025, 12:00 AM

Limited Time Offer

25%

Off

Get Premium ECSS Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel
Tegan
8 days ago
I think the function of Autopsy that helped Jack recover the deleted files is Data carving.
upvoted 0 times
...

Save Cancel