10 free, exam-style Certified Space Security Specialist Professional (CSSSP) practice questions with answers and explanations. No signup required. Work through them below, then take the full free CSSSP practice test to study every exam domain.
An adversary develops the ability to inject authenticated-looking traffic into one element of a satellite's TT&C architecture. Compromise of which element creates the GREATEST risk that the adversary can take direct control of the spacecraft?
Correct answer: D - The command uplink, which delivers operating instructions to the spacecraft
A security engineer proposes applying the organization's standard enterprise "patch and reboot" incident-response playbook to an operational satellite after a flaw is found in its flight software. Why is this approach fundamentally flawed for an on-orbit asset?
Correct answer: C - The asset cannot be physically reached or rebuilt, and patch uplinks are bandwidth-limited and contested
A small satellite loads its FPGA configuration bitstream from external flash memory at every power-on, and a reviewer flags the boot path as high-severity. Which control MOST directly prevents a malicious or altered bitstream from executing?
Correct answer: A - Verifying a digitally signed bitstream against a hardware root of trust before it executes
To cut cost and shorten schedule, a program replaces several radiation-hardened, qualified processors with commercial off-the-shelf (COTS) parts sourced through a multi-tier supplier network. From a security standpoint, which pair of risks does this decision MOST increase?
Correct answer: B - Increased supply-chain compromise risk and lower tolerance to radiation faults
During the Categorize step of the NIST RMF (SP 800-37 Rev. 2) for a satellite command-and-control system, the team rates impact as Confidentiality = Low, Integrity = High, Availability = Moderate. What is the system's overall security categorization?
Correct answer: C - High, applying the high-water-mark, since command integrity is often the driving concern
Within the CSSSP body of knowledge, the Cybersecurity Risk Management Construct (CSRMC™) is BEST described as which of the following?
Correct answer: D - A space-tailored risk-management approach applied alongside NIST RMF concepts
A satellite has passed all engineering reviews and is declared ready to perform its mission, but the authorizing official has not yet signed off on its residual cybersecurity risk. In RMF terms, what is the system's status?
Correct answer: A - It has mission acceptance but not an Authorization to Operate (ATO)
An adversary records a valid, properly authenticated command sent to a spacecraft and later retransmits it verbatim, hoping the spacecraft will execute it a second time. Which control MOST directly defeats this specific attack?
Correct answer: B - Adding a per-command sequence number so each command is valid only once
Ground receivers begin computing positions that are precisely wrong rather than simply losing the signal, and they report a strong, valid-looking signal the entire time. This pattern is MOST characteristic of which threat?
Correct answer: A - Spoofing
Using Tonex's S-APE™ (Space-Attack-Platform-Exploitation) framework, an analyst is cataloging a foreign intelligence service that has both the capability and the intent to target a satellite's ground network. Which S-APE™ category does this element belong to?
Correct answer: B - Threat Agents
Practice hundreds more CSSSP questions with instant scoring, weak-area drills, and full exam simulations.