810-110 AITECH — Cisco AI Technical Practitioner Exam Blueprint

Practical exam blueprint for Cisco AI Technical Practitioner (810-110 AITECH) candidates preparing for AI, data, infrastructure, security, and operations scenarios.

How to Use This Exam Blueprint

Use this checklist to organize final review for the Cisco AI Technical Practitioner (810-110 AITECH) exam. It is written as an independent study map for candidates who need to connect AI concepts with practical technical decisions in Cisco-oriented IT environments.

Because official weights can change, treat the sections below as readiness areas, not as a statement of official exam weighting. Your goal is to be able to explain concepts, compare options, recognize risks, and choose practical implementation steps under scenario pressure.

A strong candidate should be able to:

  • Explain core AI, machine learning, generative AI, and data concepts in plain technical language.
  • Connect AI workloads to infrastructure, networking, security, observability, and governance concerns.
  • Interpret scenarios involving model choice, data quality, deployment patterns, operational risk, and troubleshooting.
  • Identify when an AI solution is appropriate, when it is overkill, and what controls are needed before production use.

Topic-Area Readiness Table

Readiness areaWhat to reviewYou are ready when you can…Quick self-check
AI and ML fundamentalsAI, ML, deep learning, supervised vs unsupervised learning, classification, regression, clustering, inferenceDistinguish problem types and map them to suitable model approachesCan you tell whether a use case needs classification, prediction, clustering, search, or rules?
Data fundamentalsStructured, semi-structured, unstructured data, labels, features, data quality, bias, lineageExplain how data quality affects model output and operational trustCan you identify missing, stale, duplicated, biased, or mislabeled data in a scenario?
Model lifecycleData prep, training, validation, testing, deployment, monitoring, retrainingDescribe the flow from requirement to production model and the artifacts producedCan you list what must be checked before promoting a model to production?
Generative AILLMs, prompts, context windows, embeddings, hallucination, grounding, RAG, fine-tuningChoose between prompt engineering, retrieval augmentation, fine-tuning, or traditional automationCan you explain why a chatbot gives plausible but wrong answers?
Evaluation metricsAccuracy, precision, recall, F1, latency, cost, drift, human reviewSelect useful metrics based on business and operational riskCan you explain why accuracy alone may be misleading?
AI infrastructureCPU, GPU, memory, storage, network throughput, latency, edge vs data center vs cloudRelate workload behavior to compute, storage, and network design choicesCan you spot a bottleneck caused by data movement rather than model code?
Networking for AI workloadsEast-west traffic, API connectivity, segmentation, QoS concepts, telemetry, edge connectivityExplain how AI applications depend on reliable, observable, secure connectivityCan you identify where latency, packet loss, or policy blocks may affect inference?
Cisco technical contextCisco-oriented networking, security, automation, telemetry, and operational environmentsConnect AI adoption to the realities of enterprise IT operationsCan you discuss how AI use affects network operations, security monitoring, and support workflows?
Security and privacyIAM, least privilege, data classification, encryption, prompt injection, model abuse, supply chain riskIdentify controls needed to reduce AI system riskCan you secure data, APIs, prompts, logs, and model artifacts separately?
Governance and responsible AITransparency, explainability, bias, auditability, human oversight, policy alignmentRecommend governance checkpoints without blocking useful experimentationCan you decide when a human approval step is required?
Deployment and MLOpsModel registry, CI/CD, versioning, rollback, canary release, monitoring, incident responseDescribe how AI systems are deployed, monitored, and updated safelyCan you recover from a bad model version or degraded inference behavior?
TroubleshootingData drift, concept drift, latency, API failures, poor predictions, access errorsIsolate whether the issue is data, model, infrastructure, network, security, or integrationCan you choose the first diagnostic step from symptoms alone?

Core AI and Machine Learning Foundations

Concepts to Know Cold

  • Difference between AI, machine learning, deep learning, and generative AI.
  • Difference between training, validation, testing, and inference.
  • Difference between model, algorithm, dataset, feature, label, and prediction.
  • Difference between classification, regression, clustering, recommendation, ranking, and anomaly detection.
  • Difference between supervised, unsupervised, semi-supervised, and reinforcement learning.
  • Difference between batch inference, real-time inference, and streaming analytics.
  • Difference between deterministic automation and probabilistic AI output.
  • Why AI output may require confidence thresholds, validation, and human review.

Problem-Type Mapping

Scenario clueLikely problem typeWatch for
“Will this transaction be fraudulent?”ClassificationClass imbalance, false positives, false negatives
“What will demand be next week?”Regression or forecastingSeasonality, missing history, changing patterns
“Group similar devices/users/events.”ClusteringNo ground-truth labels, interpretability
“Find unusual network behavior.”Anomaly detectionBaseline quality, alert fatigue
“Recommend next action/content/product.”Recommendation or rankingFeedback loops, privacy, cold start
“Answer questions from internal documents.”Retrieval-augmented generation or searchSource freshness, grounding, access control
“Summarize support tickets.”Generative AI / NLPHallucination, sensitive data exposure
“Apply a fixed compliance rule.”Rules engine or policy automationAI may be unnecessary

Readiness Prompts

Can you answer these without guessing?

  • What makes a dataset suitable or unsuitable for model training?
  • Why can a model perform well in testing but poorly in production?
  • When is a simple rules-based workflow better than AI?
  • What does it mean for a model to be explainable?
  • How do false positives and false negatives affect operational decisions differently?
  • Why do AI systems need monitoring after deployment?

Data Readiness and Feature Thinking

AI performance is often limited more by data quality than by model sophistication. For the Cisco AI Technical Practitioner (810-110 AITECH), be ready to reason about data as an operational asset.

Data concernWhat it meansExam-style decision cue
CompletenessRequired fields are presentMissing device identifiers, user attributes, timestamps, or labels can break analysis
AccuracyData reflects realityIncorrect labels or stale inventory data reduce trust
ConsistencySame meaning and format across systemsDifferent naming conventions can distort joins and reporting
TimelinessData is fresh enough for the use caseReal-time detection cannot rely only on old batch exports
LineageOrigin and transformations are knownRequired for auditability and troubleshooting
BiasData overrepresents or underrepresents groups or casesA model may work for common cases but fail at the edge
PrivacySensitive fields are identified and protectedLogs, prompts, and training data may contain regulated or confidential information
Access controlUsers and services only see authorized dataRetrieval systems must not expose restricted content

Data Pipeline Checklist

  • Identify data sources: logs, telemetry, tickets, documents, databases, APIs, user inputs.
  • Validate schema, field types, timestamps, and required identifiers.
  • Remove or protect sensitive data before use in training, testing, prompts, or logs.
  • Check whether labels are reliable, current, and consistently defined.
  • Confirm whether the data represents the target production environment.
  • Separate training, validation, and test data to reduce leakage.
  • Track dataset version, source, owner, and refresh frequency.
  • Decide how failed, incomplete, or delayed data will be handled.
  • Document assumptions and known limitations.

Common Data Traps

TrapWhy it mattersBetter thinking
“More data is always better.”More bad data can amplify noise or biasPrefer relevant, clean, representative data
Using production logs without reviewLogs may contain secrets or sensitive user dataClassify and sanitize before AI use
Training on future informationCreates leakage and unrealistic performancePreserve time order where relevant
Ignoring rare eventsRare cases may be the highest-risk casesUse suitable metrics and sampling strategy
Treating labels as truthHuman labels may be inconsistentAudit labels and review edge cases

Model Evaluation and Metrics

Be ready to select metrics based on the problem and risk, not just the metric that looks best.

Metric or measureUse it forPlain formula or meaningWatch for
AccuracyGeneral classificationCorrect predictions / all predictionsMisleading with imbalanced classes
PrecisionReducing false positivesTP / (TP + FP)High precision may miss real positives
RecallReducing false negativesTP / (TP + FN)High recall may increase noise
F1 scoreBalancing precision and recall2PR / (P + R)Hides business tradeoffs
Confusion matrixClassification diagnosisTP, FP, TN, FN countsUse to reason about impact
Mean absolute errorRegressionAverage absolute prediction errorEasier to explain than squared error
LatencyReal-time inferenceResponse timeMay matter more than model quality in operations
ThroughputScaled inferenceRequests or events handled over timeCapacity planning concern
Cost per inferenceOperational efficiencyResource cost per predictionImportant for high-volume use
DriftProduction monitoringChange in data or concept over timeRequires baselines and alerting

Key formulas:

\[ Precision = \frac{TP}{TP + FP} \]\[ Recall = \frac{TP}{TP + FN} \]\[ F1 = \frac{2 \times Precision \times Recall}{Precision + Recall} \]

Metric Decision Checks

  • If false alarms are costly, do you know why precision matters?
  • If missed incidents are dangerous, do you know why recall matters?
  • If classes are imbalanced, can you explain why accuracy may be weak?
  • If users need real-time response, can you include latency in evaluation?
  • If the environment changes, can you describe drift monitoring?
  • If a model is used for high-impact decisions, can you justify human oversight?

Generative AI and Retrieval-Augmented Generation

Generative AI Concepts

ConceptWhat to knowReadiness cue
Large language modelGenerates text or code-like output from learned patternsCan explain why output is probabilistic
PromptUser/system instruction and contextCan write clear task, context, constraints, and output format
Token/context windowPractical limit on input and output contextCan explain why long documents may need chunking or retrieval
EmbeddingVector representation of meaningCan explain semantic search at a high level
Vector database/searchRetrieves similar content using embeddingsCan explain why retrieval quality affects answer quality
HallucinationPlausible but unsupported outputCan recommend grounding, citations, and validation
RAGRetrieves relevant content and gives it to the modelCan choose it when answers must reflect private or current documents
Fine-tuningAdapts model behavior or domain styleCan distinguish it from simply adding retrieved context
GuardrailsConstraints, filters, policies, validationCan identify where to enforce safety and compliance

RAG Flow to Understand

User question
  -> authenticate and authorize user
  -> retrieve permitted documents or chunks
  -> rank relevant context
  -> build prompt with instructions and sources
  -> generate answer
  -> validate, filter, cite, or escalate
  -> log safely for monitoring

RAG, Fine-Tuning, or Rules?

    flowchart TD
	    A[New AI use case] --> B{Need current or private knowledge?}
	    B -->|Yes| C[Consider RAG with access control]
	    B -->|No| D{Need consistent format or behavior?}
	    D -->|Yes| E[Prompt templates, guardrails, or fine-tuning]
	    D -->|No| F{Is the logic deterministic?}
	    F -->|Yes| G[Use rules, workflow, or automation]
	    F -->|No| H[Evaluate model-based approach]
	    C --> I{High-risk output?}
	    E --> I
	    H --> I
	    I -->|Yes| J[Add human review, audit, and monitoring]
	    I -->|No| K[Deploy with monitoring and rollback]

Generative AI Readiness Checklist

  • Explain why generative AI can produce confident but incorrect answers.
  • Identify when RAG is useful for enterprise documents or knowledge bases.
  • Explain why access control must apply before retrieval, not only after generation.
  • Distinguish prompt engineering from fine-tuning.
  • Recognize prompt injection and data exfiltration risks.
  • Describe guardrails such as input filtering, output validation, citations, and policy checks.
  • Explain why sensitive prompts and responses require logging controls.
  • Identify when human review is required before action is taken.
  • Explain why model output should not automatically modify critical systems without controls.

AI Infrastructure, Networking, and Cisco-Oriented Technical Context

For a Cisco AI Technical Practitioner candidate, AI is not only a model topic. It is also an infrastructure, connectivity, security, and operations topic.

Infrastructure Readiness Areas

AreaReview focusPractical readiness question
ComputeCPU, GPU, memory, acceleration, training vs inferenceIs the workload compute-bound, memory-bound, or latency-sensitive?
StorageTraining data, logs, model artifacts, embeddings, backupsIs data accessible, protected, and performant enough?
NetworkBandwidth, latency, east-west traffic, API paths, segmentationCan systems reach data, models, users, and monitoring safely?
EdgeLocal inference near data source or userDoes edge placement reduce latency or bandwidth usage?
Cloud/data centerCentralized training, scalable services, governanceIs centralized deployment better for control and scale?
APIsModel endpoints, application integration, automationAre authentication, rate handling, and error handling designed?
ObservabilityMetrics, logs, traces, telemetry, alertsCan teams see model health and infrastructure health together?
ResiliencyFailover, rollback, degraded mode, retriesWhat happens if the model endpoint is slow or unavailable?

Networking Checks for AI Workloads

  • Identify whether the workload requires real-time, near-real-time, or batch processing.
  • Check whether traffic flows are north-south, east-west, edge-to-core, or cloud-to-enterprise.
  • Consider segmentation between users, applications, data stores, model services, and management planes.
  • Ensure APIs and model endpoints have authenticated and authorized access.
  • Consider latency-sensitive inference paths separately from bulk data transfer paths.
  • Plan monitoring for network latency, packet loss, saturation, connection failures, and blocked flows.
  • Understand that AI workloads can increase data movement and telemetry volume.
  • Evaluate whether edge inference is needed for disconnected, low-latency, or privacy-sensitive use cases.
  • Include fallback behavior if the AI service cannot be reached.

Cisco-Context Scenario Cues

If the scenario mentions…Think about…
Network operations using AI insightsTelemetry quality, alert correlation, false positives, operator trust
Security analyticsData classification, threat context, least privilege, incident workflow
Edge environmentsLocal inference, limited resources, intermittent connectivity, update control
Enterprise knowledge assistantRAG, document permissions, source freshness, prompt injection
Automation triggered by AIHuman approval, rollback, blast radius, audit trail
Multiple teams consuming AI outputGovernance, role-based access, consistent definitions, explainability
Sensitive operational logsSanitization, retention, encryption, access controls
API integrationAuthentication, authorization, retries, timeouts, input validation

Security, Privacy, and Responsible AI

AI systems introduce familiar security problems in new places: datasets, prompts, model endpoints, embeddings, logs, and generated output.

Security Control Checklist

Control areaWhat to verifyWhy it matters
Identity and accessUsers, services, and pipelines have least privilegePrevents unauthorized data/model access
Data classificationSensitive, confidential, regulated, and public data are separatedReduces privacy and compliance risk
EncryptionData protected in transit and at rest where requiredProtects datasets, prompts, logs, and artifacts
Network segmentationAI components are isolated appropriatelyLimits lateral movement and unauthorized access
Input validationUser input, files, and API requests are checkedReduces injection and abuse
Output validationGenerated output is filtered or checkedReduces unsafe, incorrect, or noncompliant responses
Secret handlingTokens, keys, and credentials are not stored in prompts or logsPrevents credential exposure
Model accessModel endpoints are authenticated, authorized, and monitoredPrevents abuse and data leakage
Supply chainModels, packages, containers, and dependencies are trustedReduces tampering and vulnerability risk
Audit loggingImportant actions are logged safelySupports investigation and accountability

AI-Specific Threats to Recognize

  • Prompt injection: a user or document attempts to override system instructions.
  • Data leakage: sensitive information appears in prompts, responses, embeddings, or logs.
  • Training data poisoning: malicious or low-quality data influences model behavior.
  • Model theft or extraction: repeated queries attempt to copy model behavior or sensitive outputs.
  • Insecure plugin/tool use: model can call actions beyond intended scope.
  • Over-privileged retrieval: assistant returns documents the user should not see.
  • Hallucinated actions: generated instructions are treated as verified facts.
  • Shadow AI: teams use unapproved AI tools with enterprise data.

Responsible AI Readiness

  • Explain bias, fairness, transparency, accountability, and explainability in practical terms.
  • Identify when an AI decision should be explainable to users, auditors, or operators.
  • Describe human-in-the-loop review for high-risk or irreversible actions.
  • Explain why model cards, data sheets, or evaluation reports are useful artifacts.
  • Recognize the need for monitoring after deployment, not just pre-release testing.
  • Identify when AI output should be advisory rather than authoritative.
  • Explain how governance supports safe adoption without stopping all experimentation.

Deployment, Operations, and MLOps

Lifecycle Checklist

PhaseCandidate should be able to describeReadiness artifact
RequirementsProblem, users, risk, success criteriaUse-case definition
Data preparationSource, quality, labels, privacy, lineageData inventory or data sheet
Model developmentBaseline, model choice, feature strategyExperiment notes
EvaluationMetrics, test data, risk reviewEvaluation report
DeploymentEndpoint, integration, access, scaling, rollbackDeployment plan
MonitoringAccuracy, drift, latency, errors, cost, user feedbackMonitoring dashboard
GovernanceOwnership, approval, audit, retentionRisk register
Incident responseFailure modes, escalation, rollbackRunbook

Operations Checks

  • Version datasets, prompts, model artifacts, configuration, and code.
  • Separate development, testing, and production environments.
  • Use approval gates for high-risk deployments.
  • Define rollback criteria before release.
  • Monitor model quality and infrastructure health together.
  • Track latency, error rate, throughput, and user-reported issues.
  • Detect data drift and concept drift.
  • Log enough for troubleshooting without exposing sensitive data.
  • Define model ownership and escalation paths.
  • Decide what users see when inference fails.

Troubleshooting Decision Table

SymptomFirst likely area to checkFollow-up questions
Predictions suddenly degradeData drift or upstream data changeDid schema, source, labels, or population change?
Model works in test but fails in productionEnvironment, access, data mismatchAre production inputs different from test inputs?
High inference latencyCompute, network, API, model sizeIs delay from model execution, data retrieval, or network path?
Users receive unauthorized informationRetrieval access controlWas authorization enforced before retrieval?
Many false alertsThresholds, metric choice, baselineIs the threshold aligned to business risk?
AI assistant gives unsupported answersRAG retrieval, prompt design, hallucinationAre sources current, relevant, and cited?
Deployment breaks integrationAPI contract or authenticationDid endpoint, schema, token, or permission change?
Cost increases unexpectedlyUsage, model size, inefficient retrievalAre calls, tokens, batch jobs, or retries increasing?
Monitoring is noisyPoor alert designAre alerts actionable and tied to SLOs or risk?

Scenario and Decision-Point Practice

Use the prompts below to test exam-style judgment.

ScenarioStrong answer should consider
A company wants an AI assistant to answer internal policy questions.RAG, document access control, source freshness, citations, prompt injection, logging, escalation
A security team wants AI to prioritize alerts.False positives/negatives, analyst workflow, explainability, telemetry quality, feedback loop
A model’s accuracy is high, but it misses rare critical events.Class imbalance, recall, confusion matrix, thresholds, cost of false negatives
An edge site has limited connectivity but needs fast decisions.Edge inference, local data processing, update process, fallback, resource constraints
A team wants the model to directly change network configurations.Approval workflow, blast radius, rollback, audit logging, policy validation
A chatbot exposes restricted documents.Authorization before retrieval, data classification, segmentation, audit review
Inference latency increases after a new release.Model size, API path, retrieval step, network performance, compute saturation, rollback
Data scientists want all production logs for training.Privacy review, data minimization, sanitization, retention, access control
Business users ask for “100% accurate AI.”Probabilistic output, metrics, acceptable risk, human review, continuous monitoring
A model performs well for one region but poorly in another.Data representativeness, bias, localization, drift, segmentation of evaluation results

“Can You Do This?” Master Checklist

AI Concepts and Model Selection

  • Explain the difference between predictive AI and generative AI.
  • Match a business problem to classification, regression, clustering, anomaly detection, search, or generation.
  • Identify when AI is unnecessary because rules or workflow automation are sufficient.
  • Explain overfitting and underfitting in plain terms.
  • Explain why a baseline model is useful.
  • Compare batch, real-time, and streaming inference patterns.
  • Select evaluation metrics based on operational impact.
  • Interpret a confusion matrix and connect it to false-positive and false-negative consequences.

Data and Feature Readiness

  • Identify likely data sources for an AI use case.
  • Check data completeness, accuracy, timeliness, and consistency.
  • Recognize biased, stale, mislabeled, or nonrepresentative data.
  • Explain data leakage and how to avoid it.
  • Describe how labels are created and validated.
  • Identify sensitive data in logs, documents, prompts, and outputs.
  • Explain why lineage and versioning matter.

Generative AI and RAG

  • Write the elements of a good prompt: role, task, context, constraints, output format.
  • Explain why grounding reduces hallucination risk.
  • Distinguish RAG from fine-tuning.
  • Explain embeddings and semantic retrieval at a practical level.
  • Identify prompt injection attempts.
  • Protect restricted documents in a retrieval workflow.
  • Recommend citations, source links, or confidence indicators when appropriate.
  • Decide when human review is required.

Infrastructure and Networking

  • Identify compute, memory, storage, and network needs of an AI workload.
  • Explain why training and inference may have different infrastructure requirements.
  • Recognize latency-sensitive inference scenarios.
  • Identify where network segmentation applies to AI services.
  • Explain edge vs centralized deployment tradeoffs.
  • Check API access, authentication, authorization, and timeout behavior.
  • Include monitoring for network and application paths.
  • Describe safe fallback if an AI endpoint is unavailable.

Security and Governance

  • Apply least privilege to users, services, datasets, and model endpoints.
  • Identify where encryption and secure transport are needed.
  • Protect secrets from prompts, logs, and code.
  • Recognize AI supply-chain risks.
  • Explain audit logging for AI-assisted actions.
  • Identify model abuse, data exfiltration, and insecure tool-use risks.
  • Explain responsible AI principles in operational language.
  • Recommend governance checkpoints for high-risk use cases.

Operations and Troubleshooting

  • Describe an MLOps lifecycle from development to monitoring.
  • Identify deployment artifacts: model, prompt, dataset, config, API contract, runbook.
  • Explain rollback and canary-style release concepts at a high level.
  • Monitor model quality, latency, errors, and drift.
  • Distinguish data drift from concept drift.
  • Troubleshoot whether a failure is caused by data, model, network, security, or integration.
  • Explain what to log and what not to log.
  • Define ownership and escalation for AI incidents.

Common Weak Areas and Traps

Weak areaWhy candidates miss itFinal-review correction
Treating AI as only a model topicExam scenarios often include infrastructure, security, and operationsAlways ask: data, network, identity, monitoring, governance
Memorizing terms without decisionsReal questions may test judgmentPractice mapping scenario clues to technical choices
Overusing accuracyAccuracy can hide serious failure modesReview precision, recall, F1, and business impact
Ignoring access control in RAGRetrieval can leak restricted dataAuthorization must happen before content is retrieved
Confusing fine-tuning with RAGThey solve different problemsRAG adds current/private context; fine-tuning changes behavior/style
Assuming AI output is authoritativeAI can be probabilistic and wrongAdd validation, citations, confidence, and human review
Forgetting operational rollbackAI deployments can degrade after releaseKnow versioning, monitoring, rollback, and incident response
Missing data leakageTest results can be unrealistically goodKeep training/test separation and time-aware validation
Ignoring edge constraintsEdge sites may have limited compute or connectivityConsider local inference, updates, fallback, and monitoring
Treating logs as safe by defaultLogs may contain sensitive data or secretsClassify, sanitize, and control retention/access

Final-Week Review Checklist

Seven to Five Days Out

  • Re-read Cisco AI Technical Practitioner (810-110 AITECH) exam information available to you.
  • Build a one-page map of AI lifecycle stages and artifacts.
  • Review data quality, leakage, bias, labeling, and lineage.
  • Practice metric interpretation using small confusion matrix examples.
  • Review generative AI terms: prompts, embeddings, RAG, hallucination, guardrails.
  • Review infrastructure tradeoffs: edge vs centralized, training vs inference, latency vs throughput.
  • List security controls for datasets, prompts, APIs, models, and logs.

Four to Two Days Out

  • Work scenario questions rather than only definition questions.
  • For every missed question, classify the miss: concept, wording, scenario clue, or rushing.
  • Practice explaining why one option is safer or more practical than another.
  • Review troubleshooting symptoms and likely root-cause areas.
  • Review responsible AI and governance decision points.
  • Practice identifying when human approval is required.
  • Reduce notes to high-yield decision rules.

Day Before

  • Review your weakest three topic areas only.
  • Recheck metric definitions and common AI security risks.
  • Review RAG vs fine-tuning vs rules one more time.
  • Review deployment and rollback flow.
  • Avoid cramming exact product limits or unsupported details.
  • Prepare exam logistics and rest.

Exam-Day Mental Checklist

Before choosing an answer, ask:

  1. What is the actual problem: prediction, generation, retrieval, automation, security, or operations?
  2. What is the highest-risk failure mode?
  3. Is the issue caused by data, model, infrastructure, network, identity, or process?
  4. Does the option protect sensitive data and enforce least privilege?
  5. Does the option include monitoring, rollback, or human review when needed?
  6. Is a simpler non-AI solution more appropriate?

Practical Next Step

Use this Exam Blueprint as a gap analysis. Mark each checkbox as ready, needs review, or needs practice. Then focus practice on scenario questions that force you to choose between AI design options, security controls, deployment patterns, and troubleshooting paths for the Cisco AI Technical Practitioner (810-110 AITECH) exam.