CAS-001 Exam Details

  • Exam Code
    :CAS-001
  • Exam Name
    :CompTIA Advanced Security Practitioner
  • Certification
    :CompTIA Advanced Security Practitioner
  • Vendor
    :CompTIA
  • Total Questions
    :493 Q&As
  • Last Updated
    :Jan 22, 2024

CompTIA CAS-001 Online Questions & Answers

  • Question 221:

    An administrator would like to connect a server to a SAN.

    Which of the following processes would BEST allow for availability and access control?

    A. Install a dual port HBA on the SAN, create a LUN on the server, and enable deduplication and data snapshots.
    B. Install a multipath LUN on the server with deduplication, and enable LUN masking on the SAN.
    C. Install 2 LUNs on the server, cluster HBAs on the SAN, and enable multipath and data deduplication.
    D. Install a dual port HBA in the server; create a LUN on the SAN, and enable LUN masking and multipath.

  • Question 222:

    Company Z is merging with Company A to expand its global presence and consumer base. This purchase includes several offices in different countries. To maintain strict internal security and compliance requirements, all employee activity may be monitored and reviewed.

    Which of the following would be the MOST likely cause for a change in this practice?

    A. The excessive time it will take to merge the company's information systems.
    B. Countries may have different legal or regulatory requirements.
    C. Company A might not have adequate staffing to conduct these reviews.
    D. The companies must consolidate security policies during the merger.

  • Question 223:

    Company A is purchasing Company B, and will import all of Company B's users into its authentication system. Company A uses 802.1x with a RADIUS server, while Company B uses a captive SSL portal with an LDAP backend. Which of the following is the BEST way to integrate these two networks?

    A. Enable RADIUS and end point security on Company B's network devices.
    B. Enable LDAP authentication on Company A's network devices.
    C. Enable LDAP/TLS authentication on Company A's network devices.
    D. Enable 802.1x on Company B's network devices.

  • Question 224:

    An organization has decided to reduce labor costs by outsourcing back office processing of credit applications to a provider located in another country. Data sovereignty and privacy concerns raised by the security team resulted in the third-party provider only accessing and processing the data via remote desktop sessions. To facilitate communications and improve productivity, staff at the third party has been provided with corporate email accounts that are only accessible via the remote desktop sessions. Email forwarding is blocked and staff at the third party can only communicate with staff within the organization.

    Which of the following additional controls should be implemented to prevent data loss? (Select THREE).

    A. Implement hashing of data in transit
    B. Session recording and capture
    C. Disable cross session cut and paste
    D. Monitor approved credit accounts
    E. User access audit reviews
    F. Source IP whitelisting

  • Question 225:

    A company which manufactures ASICs for use in an IDS wants to ensure that the ASICs' code is not prone to buffer and integer overflows. The ASIC technology is copyrighted and the confidentiality of the ASIC code design is exceptionally important. The company is required to conduct internal vulnerability testing as well as testing by a third party.

    Which of the following should be implemented in the SDLC to achieve these requirements?

    A. Regression testing by the manufacturer and integration testing by the third party
    B. User acceptance testing by the manufacturer and black box testing by the third party
    C. Defect testing by the manufacturer and user acceptance testing by the third party
    D. White box unit testing by the manufacturer and black box testing by the third party

  • Question 226:

    The helpdesk manager wants to find a solution that will enable the helpdesk staff to better serve company employees who call with computer-related problems. The helpdesk staff is currently unable to perform effective troubleshooting and relies on callers to describe their technology problems.

    Given that the helpdesk staff is located within the company headquarters and 90% of the callers are telecommuters, which of the following tools should the helpdesk manager use to make the staff more effective at troubleshooting while at the same time reducing company costs? (Select TWO).

    A. Web cameras
    B. Email
    C. Instant messaging
    D. BYOD
    E. Desktop sharing
    F. Presence

  • Question 227:

    A large organization that builds and configures every data center against distinct requirements loses efficiency, which results in slow response time to resolve issues. However, total uniformity presents other problems. Which of the following presents the GREATEST risk when consolidating to a single vendor or design solution?

    A. Competitors gain an advantage by increasing their service offerings.
    B. Vendor lock in may prevent negotiation of lower rates or prices.
    C. Design constraints violate the principle of open design.
    D. Lack of diversity increases the impact of specific events or attacks.

  • Question 228:

    A security administrator is investigating the compromise of a software distribution website. Forensic analysis shows that several popular files are infected with malicious code. However, comparing a hash of the infected files with the original, non-infected files which were restored from backup, shows that the hash is the same.

    Which of the following explains this?

    A. The infected files were using obfuscation techniques to evade detection by antivirus software.
    B. The infected files were specially crafted to exploit a collision in the hash function.
    C. The infected files were using heuristic techniques to evade detection by antivirus software.
    D. The infected files were specially crafted to exploit diffusion in the hash function.

  • Question 229:

    During user acceptance testing, the security administrator believes to have discovered an issue in the login prompt of the company's financial system. While entering the username and password, the program crashed and displayed the system command prompt. The security administrator believes that one of the fields may have been mistyped and wants to reproduce the issue to report it to the software developers.

    Which of the following should the administrator use to reproduce the issue?

    A. The administrator should enter a username and use an offline password cracker in brute force mode.
    B. The administrator should use a network analyzer to determine which packet caused the system to crash.
    C. The administrator should extract the password file and run an online password cracker in brute force mode against the password file.
    D. The administrator should run an online fuzzer against the login screen.

  • Question 230:

    A security engineer at a software development company has identified several vulnerabilities in a product late in the development cycle. This causes a huge delay for the release of the product. Which of the following should the administrator do to prevent these issues from occurring in the future?

    A. Recommend switching to an SDLC methodology and perform security testing during each maintenance iteration
    B. Recommend switching to a spiral software development model and perform security testing during the requirements gathering
    C. Recommend switching to a waterfall development methodology and perform security testing during the testing phase
    D. Recommend switching to an agile development methodology and perform security testing during iterations

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only CompTIA exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your CAS-001 exam preparations and CompTIA certification application, do not hesitate to visit our Vcedump.com to find your solutions here.