1. Home
  2. CompTIA
  3. CAS-002

CompTIA CAS-002 Online Practice Questions and Exam Preparation

CAS-002 Exam Details

  • Exam Code
    :CAS-002
  • Exam Name
    :CompTIA Advanced Security Practitioner (CASP+)
  • Certification
    :CompTIA Certifications
  • Vendor
    :CompTIA
  • Total Questions
    :733 Q&As
  • Last Updated
    :Jan 22, 2024

CompTIA CAS-002 Online Questions & Answers

  • Question 621:

    A security consultant is investigating acts of corporate espionage within an organization. Each time the organization releases confidential information to high- ranking engineers, the information is soon leaked to competing companies. Which of the following techniques should the consultant use to discover the source of the information leaks?

    A. Digital watermarking
    B. Steganography
    C. Enforce non-disclosure agreements
    D. Digital rights management

  • Question 622:

    Within an organization, there is a known lack of governance for solution designs. As a result there are inconsistencies and varying levels of quality for the artifacts that are produced. Which of the following will help BEST improve this situation?

    A. Ensure that those producing solution artifacts are reminded at the next team meeting that quality is important.
    B. Introduce a peer review process that is mandatory before a document can be officially made final.
    C. Introduce a peer review and presentation process that includes a review board with representation from relevant disciplines.
    D. Ensure that appropriate representation from each relevant discipline approves of the solution documents before official approval.

  • Question 623:

    A security administrator was doing a packet capture and noticed a system communicating with an address within the 2001::/32 prefix. The network administrator confirms there is no IPv6 routing into or out of the network. Which of the following is the BEST course of action?

    A. Investigate the network traffic and block UDP port 3544 at the firewall
    B. Remove the system from the network and disable IPv6 at the router
    C. Locate and remove the unauthorized 6to4 relay from the network
    D. Disable the switch port and block the 2001::/32 traffic at the firewall

  • Question 624:

    A security administrator notices the following line in a server's security log:

    ') + "'; The administrator is concerned that it will take the developer a lot of time to fix the application that is running on the server.

    Which of the following should the security administrator implement to prevent this particular attack?

    A. WAF
    B. Input validation
    C. SIEM
    D. Sandboxing
    E. DAM

  • Question 625:

    Company XYZ provides hosting services for hundreds of companies across multiple industries including healthcare, education, and manufacturing. The security architect for company XYZ is reviewing a vendor proposal to reduce company XYZ's hardware costs by combining multiple physical hosts through the use of virtualization technologies. The security architect notes concerns about data separation, confidentiality, regulatory requirements concerning PII, and administrative complexity on the proposal. Which of the following BEST describes the core concerns of the security architect?

    A. Most of company XYZ's customers are willing to accept the risks of unauthorized disclosure and access to information by outside users.
    B. The availability requirements in SLAs with each hosted customer would have to be re- written to account for the transfer of virtual machines between physical platforms for regular maintenance.
    C. Company XYZ could be liable for disclosure of sensitive data from one hosted customer when accessed by a malicious user who has gained access to the virtual machine of another hosted customer.
    D. Not all of company XYZ's customers require the same level of security and the administrative complexity of maintaining multiple security postures on a single hypervisor negates hardware cost savings.

  • Question 626:

    A company is facing penalties for failing to effectively comply with e-discovery requests. Which of the following could reduce the overall risk to the company from this issue?

    A. Establish a policy that only allows filesystem encryption and disallows the use of individual file encryption.
    B. Require each user to log passwords used for file encryption to a decentralized repository.
    C. Permit users to only encrypt individual files using their domain password and archive all old user passwords.
    D. Allow encryption only by tools that use public keys from the existing escrowed corporate PKI.

  • Question 627:

    Company XYZ provides cable television service to several regional areas. They are currently installing fiber-to-the-home in many areas with hopes of also providing telephone and Internet services. The telephone and Internet services portions of the company will each be separate subsidiaries of the parent company. The board of directors wishes to keep the subsidiaries separate from the parent company. However all three companies must share customer data for the purposes of accounting, billing, and customer authentication. The solution must use open standards, and be simple and seamless for customers, while only sharing minimal data between the companies. Which of the following solutions is BEST suited for this scenario?

    A. The companies should federate, with the parent becoming the SP, and the subsidiaries becoming an IdP.
    B. The companies should federate, with the parent becoming the IdP, and the subsidiaries becoming an SSP.
    C. The companies should federate, with the parent becoming the IdP, and the subsidiaries becoming an SP.
    D. The companies should federate, with the parent becoming the ASP, and the subsidiaries becoming an IdP.

  • Question 628:

    Virtual hosts with different security requirements should be:

    A. encrypted with a one-time password.
    B. stored on separate physical hosts.
    C. moved to the cloud.
    D. scanned for vulnerabilities regularly.

  • Question 629:

    A company has purchased a new system, but security personnel are spending a great deal of time on system maintenance. A new third party vendor has been selected to maintain and manage the company's system. Which of the following document types would need to be created before any work is performed?

    A. IOS
    B. ISA
    C. SLA
    D. OLA

  • Question 630:

    An organization did not know its internal customer and financial databases were compromised until the attacker published sensitive portions of the database on several popular attacker websites. The organization was unable to determine when, how, or who conducted the attacks but rebuilt, restored, and updated the compromised database server to continue operations.

    Which of the following is MOST likely the cause for the organization's inability to determine what really occurred?

    A. Too few layers of protection between the Internet and internal network
    B. Lack of a defined security auditing methodology
    C. Poor intrusion prevention system placement and maintenance
    D. Insufficient logging and mechanisms for review

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only CompTIA exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your CAS-002 exam preparations and CompTIA certification application, do not hesitate to visit our Vcedump.com to find your solutions here.