CAS-001 Exam Details

  • Exam Code
    :CAS-001
  • Exam Name
    :CompTIA Advanced Security Practitioner
  • Certification
    :CompTIA Advanced Security Practitioner
  • Vendor
    :CompTIA
  • Total Questions
    :493 Q&As
  • Last Updated
    :Jan 22, 2024

CompTIA CAS-001 Online Questions & Answers

  • Question 61:

    A number of security incidents have been reported involving mobile web-based code developed by a consulting company. Performing a root cause analysis, the security administrator of the consulting company discovers that the problem is a simple programming error that results in extra information being loaded into the memory when the proper format is selected by the user. After repeating the process several times, the security administrator is able to execute unintentional instructions through this method.

    Which of the following BEST describes the problem that is occurring, a good mitigation technique to use to prevent future occurrences, and why it a security concern?

    A. Problem: Cross-site scripting Mitigation Technique. Input validation Security Concern: Decreases the company's profits and cross-site scripting can enable malicious actors to compromise the confidentiality of network connections or interrupt the availability of the network.
    B. Problem: Buffer overflow Mitigation Technique: Secure coding standards Security Concern: Exposes the company to liability buffer overflows and can enable malicious actors to compromise the confidentiality/availability of the data.
    C. Problem: SQL injection Mitigation Technique: Secure coding standards Security Concern: Exposes the company to liability SQL injection and can enable malicious actors to compromise the confidentiality of data or interrupt the availability of a system.
    D. Problem: Buffer overflow Mitigation Technique: Output validation Security Concern: Exposing the company to public scrutiny buffer overflows can enable malicious actors to interrupt the availability of a system.

  • Question 62:

    An internal committee comprised of the facilities manager, the physical security manager, the network administrator, and a member of the executive team has been formed to address a recent breach at a company's data center. It was discovered that during the breach, an HVAC specialist had gained entry to an area that contained server farms holding sensitive financial data. Although the HVAC specialist was there to fix a legitimate issue, the investigation concluded security be provided for the two entry and exit points for the server farm.

    Which of the following should be implemented to accomplish the recommendations of the investigation?

    A. Implement a policy that all non-employees should be escorted in the data center.
    B. Place a mantrap at the points with biometric security.
    C. Hire an HVAC person for the company, eliminating the need for external HVAC people.
    D. Implement CCTV cameras at both points.

  • Question 63:

    A security architect is assigned to a major software development project. The software development team has a history of writing bug prone, inefficient code, with multiple security flaws in every release. The security architect proposes implementing secure coding standards to the project manager.

    The secure coding standards will contain detailed standards for:

    A. error handling, input validation, memory use and reuse, race condition handling, commenting, and preventing typical security problems.
    B. error prevention, requirements validation, memory use and reuse, commenting typical security problems, and testing code standards.
    C. error elimination, trash collection, documenting race conditions, peer review, and typical security problems.
    D. error handling, input validation, commenting, preventing typical security problems, managing customers, and documenting extra requirements.

  • Question 64:

    A business owner has raised concerns with the Chief Information Security Officer (CISO) because money has been spent on IT security infrastructure, but corporate assets are still found to be vulnerable. The business recently implemented a patch management product and SOE hardening initiative. A third party auditor reported findings against the business because some systems were missing patches.

    Which of the following statements BEST describes this situation?

    A. The business owner is at fault because they are responsible for patching the systems and have already been given patch management and SOE hardening products.
    B. The audit findings are invalid because remedial steps have already been applied to patch servers and the remediation takes time to complete.
    C. The CISO has not selected the correct controls and the audit findings should be assigned to them instead of the business owner.
    D. Security controls are generally never 100% effective and gaps should be explained to stakeholders and managed accordingly.

  • Question 65:

    A large bank deployed a DLP solution to detect and block customer and credit card data from leaving the organization via email. A disgruntled employee was able to successfully exfiltrate data through the corporate email gateway by embedding a word processing document containing sensitive data as an object in a CAD file.

    Which of the following BEST explains why it was not detected and blocked by the DLP solution? (Select TWO).

    A. The product does not understand how to decode embedded objects.
    B. The embedding of objects in other documents enables document encryption by default.
    C. The process of embedding an object obfuscates the data.
    D. The mail client used to send the email is not compatible with the DLP product.
    E. The DLP product cannot scan multiple email attachments at the same time.

  • Question 66:

    A large corporation which is heavily reliant on IT platforms and systems is in financial difficulty and needs to drastically reduce costs in the short term to survive. The Chief Financial Officer (CFO) has mandated that all IT and architectural functions will be outsourced and a mixture of providers will be selected. One provider will manage the desktops for five years, another provider will manage the network for ten years, another provider will be responsible for security for four years, and an offshore provider will perform day to day business processing functions for two years. At the end of each contract the incumbent may be renewed or a new provider may be selected.

    Which of the following are the MOST likely risk implications of the CFO's business decision?

    A. Strategic architecture will be adversely impacted through the segregation of duties between the providers. Vendor management costs will remain unchanged. The risk position of the organization will decline as specialists now maintain the environment. The implementation of security controls and security updates will improve. Internal knowledge of IT systems will improve as providers maintain system documentation.
    B. Strategic architecture will improve as more time can be dedicated to strategy. System stability will improve as providers use specialists and tested processes to maintain systems. Vendor management costs will increase and the organization's flexibility to react to new market conditions will be reduced slightly. Internal knowledge of IT systems will improve as providers maintain system documentation. The risk position of the organization will remain unchanged.
    C. Strategic architecture will not be impacted in the short term, but will be adversely impacted in the long term through the segregation of duties between the providers. Vendor management costs will stay the same and the organization's flexibility to react to new market conditions will be improved through best of breed technology implementations. Internal knowledge of IT systems will decline over time. The implementation of security controls and security updates will not change.
    D. Strategic architecture will be adversely impacted through the segregation of duties between the providers. Vendor management costs will increase and the organization's flexibility to react to new market conditions will be reduced. Internal knowledge of IT systems will decline and decrease future platform development. The implementation of security controls and security updates will take longer as responsibility crosses multiple boundaries.

  • Question 67:

    The Chief Executive Officer (CEO) of a large prestigious enterprise has decided to reduce business costs by outsourcing to a third party company in another country. Functions to be outsourced include: business analysts, testing, software development and back office functions that deal with the processing of customer data. The Chief Risk Officer (CRO) is concerned about the outsourcing plans.

    Which of the following risks are MOST likely to occur if adequate controls are not implemented?

    A. Geographical regulation issues, loss of intellectual property and interoperability agreement issues
    B. Improper handling of client data, interoperability agreement issues and regulatory issues
    C. Cultural differences, increased cost of doing business and divestiture issues
    D. Improper handling of customer data, loss of intellectual property and reputation damage

  • Question 68:

    An administrator is notified that contract workers will be onsite assisting with a new project. The administrator wants each worker to be aware of the corporate policy pertaining to USB storage devices. Which of the following should each worker review and understand before beginning work?

    A. Interconnection Security Agreement
    B. Memorandum of Understanding
    C. Business Partnership Agreement
    D. Non-Disclosure Agreement

  • Question 69:

    Ann, a systems engineer, is working to identify an unknown node on the corporate network. To begin her investigative work, she runs the following nmap command string:

    user@hostname:~$ sudo nmap O 192.168.1.54 Based on the output, nmap is unable to identify the OS running on the node, but the following ports are open on the device: TCP/22 TCP/111 TCP/512-514 TCP/2049 TCP/32778

    Based on this information, which of the following operating systems is MOST likely running on the unknown node?

    A. Linux
    B. Windows
    C. Solaris
    D. OSX

  • Question 70:

    A security policy states that all applications on the network must have a password length of eight characters. There are three legacy applications on the network that cannot meet this policy. One system will be upgraded in six months, and two are not expected to be upgraded or removed from the network.

    Which of the following processes should be followed?

    A. Establish a risk matrix
    B. Inherit the risk for six months
    C. Provide a business justification to avoid the risk
    D. Provide a business justification for a risk exception

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only CompTIA exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your CAS-001 exam preparations and CompTIA certification application, do not hesitate to visit our Vcedump.com to find your solutions here.