CompTIA CompTIA Certifications CAS-003 Questions & Answers

• Question 341:

  A medical facility wants to purchase mobile devices for doctors and nurses. To ensure accountability, each individual will be assigned a separate mobile device. Additionally, to protect patients' health information, management has identified

  the following requirements:

  Data must be encrypted at rest.

  The device must be disabled if it leaves the facility.

  The device must be disabled when tampered with.

  Which of the following technologies would BEST support these requirements? (Select two.)

  A. eFuse

  B. NFC

  C. GPS

  D. Biometric

  E. USB 4.1

  F. MicroSD

  Correct Answer: CD

• Question 342:

  As part of an organization's compliance program, administrators must complete a hardening checklist and note any potential improvements. The process of noting improvements in the checklist is MOST likely driven by:

  A. the collection of data as part of the continuous monitoring program.

  B. adherence to policies associated with incident response.

  C. the organization's software development life cycle.

  D. changes in operating systems or industry trends.

  Correct Answer: A

• Question 343:

  An organization is improving its web services to enable better customer engagement and self-service. The organization has a native mobile application and a rewards portal provided by a third party. The business wants to provide customers with the ability to log in once and have SSO between each of the applications. The integrity of the identity is important so it can be propagated through to back-end systems to maintain a consistent audit trail. Which of the following authentication and authorization types BEST meet the requirements? (Choose two.)

  A. SAML

  B. Social login

  C. OpenID connect

  D. XACML

  E. SPML

  F. OAuth

  Correct Answer: BC

• Question 344:

  A government organization operates and maintains several ICS environments. The categorization of one of the ICS environments led to a moderate baseline. The organization has complied a set of applicable security controls based on this categorization.

  Given that this is a unique environment, which of the following should the organization do NEXT to determine if other security controls should be considered?

  A. Check for any relevant or required overlays.

  B. Review enhancements within the current control set.

  C. Modify to a high-baseline set of controls.

  D. Perform continuous monitoring.

  Correct Answer: C

• Question 345:

  A company wants to confirm sufficient executable space protection is in place for scenarios in which malware may be attempting buffer overflow attacks. Which of the following should the security engineer check?

  A. NX/XN

  B. ASLR

  C. strcpy

  D. ECC

  Correct Answer: A

• Question 346:

  A company's chief cybersecurity architect wants to configure mutual authentication to access an internal payroll website. The architect has asked the administration team to determine the configuration that would provide the best defense against MITM attacks. Which of the following implementation approaches would BEST support the architect's goals?

  A. Utilize a challenge-response prompt as required input at username/password entry.

  B. Implement TLS and require the client to use its own certificate during handshake.

  C. Configure a web application proxy and institute monitoring of HTTPS transactions.

  D. Install a reverse proxy in the corporate DMZ configured to decrypt TLS sessions.

  Correct Answer: C

• Question 347:

  The Chief Executive Officers (CEOs) from two different companies are discussing the highly sensitive prospect of merging their respective companies together. Both have invited their Chief Information Officers (CIOs) to discern how they can securely and digitaly communicate, and the following criteria are collectively determined:

  Must be encrypted on the email servers and clients Must be OK to transmit over unsecure Internet connections

  Which of the following communication methods would be BEST to recommend?

  A. Force TLS between domains.

  B. Enable STARTTLS on both domains.

  C. Use PGP-encrypted emails.

  D. Switch both domains to utilize DNSSEC.

  Correct Answer: C

• Question 348:

  A security engineer has been hired to design a device that will enable the exfiltration of data from within a well-defended network perimeter during an authorized test. The device must bypass all firewalls and NIDS in place, as well as allow for the upload of commands from a centralized command and control answer. The total cost of the device must be kept to a minimum in case the device is discovered during an assessment. Which of the following tools should the engineer load onto the device being designed?

  A. Custom firmware with rotating key generation

  B. Automatic MITM proxy

  C. TCP beacon broadcast software

  D. Reverse shell endpoint listener

  Correct Answer: B

• Question 349:

  A recent penetration test identified that a web server has a major vulnerability. The web server hosts a critical shipping application for the company and requires 99.99% availability. Attempts to fix the vulnerability would likely break the application. The shipping application is due to be replaced in the next three months. Which of the following would BEST secure the web server until the replacement web server is ready?

  A. Patch management

  B. Antivirus

  C. Application firewall

  D. Spam filters

  E. HIDS

  Correct Answer: E

• Question 350:

  A security consultant is attempting to discover if the company is utilizing databases on client machines to store the customer data. The consultant reviews the following information:

  

  Which of the following commands would have provided this output?

  A. arp -s

  B. netstat -a

  C. ifconfig -arp

  D. sqlmap -w

  Correct Answer: B