CompTIA CAS-004 Online Practice Questions and Exam Preparation

CompTIA CAS-004 Online Questions & Answers

• Question 521:

  Which of the following processes involves searching and collecting evidence during an investigation or lawsuit?

  A. E-discovery
  B. Review analysis
  C. Information governance
  D. Chain of custody
  A. E-discovery

  ---

  Explanation

• Question 522:

  A security manager has written an incident response play book for insider attacks and is ready to begin testing it. Which of the following should the manager conduct to test the playbook?

  A. Automated vulnerability scanning
  B. Centralized logging, data analytics, and visualization
  C. Threat hunting
  D. Threat emulation
  D. Threat emulation

  ---

  Explanation

• Question 523:

  A hospital is deploying new imaging software that requires a web server for access to images for both local and remote users. The web server allows user authentication via secure LDAP. The information security officer wants to ensure the server does not allow unencrypted access to the imaging server by using Nmap to gather additional information. Given the following:

  1.The imaging server IP is 192.168.101.24.

  2.The domain controller IP is 192.168.100.1.

  3.The client machine IP is 192.168.200.37.

  Which of the following should be used to confirm this is the only open port on the web server?

  A. nmap -p 80,443 192.168.101.24
  B. nmap -p 80, 443,389,636 192.168.100.1
  C. nmap --p 80,389 192.168.200.37
  D. nmap -p- 192.168.101.24
  D. nmap -p- 192.168.101.24

  ---

  Explanation

• Question 524:

  A company is developing a new service product offering that will involve the storage of personal health information. The Chief Information Security Officer (CISO) is researching the relevant compliance regulations.

  Which of the following best describes the CISO's action?

  A. Data retention
  B. Data classification
  C. Due diligence
  D. Reference framework
  C. Due diligence

  ---

  Explanation

  Due diligence involves researching and understanding regulatory requirements (e.g., HIPAA) to ensure compliance for handling sensitive data like personal health information. Data retention refers to how long data is stored, not compliance research. Data classification organizes data by sensitivity but is not specific to compliance research. Reference frameworks provide guidelines for implementation but are not directly about research.

  References:

  CompTIA CASP+ Exam Objective 1.1: Analyze business and compliance requirements. CASP+ Study Guide, 5th Edition, Chapter 2, Legal and Regulatory Compliance.

• Question 525:

  A company based in the United States holds insurance details of EU citizens. Which of the following must be adhered to when processing EU citizens' personal, private, and confidential data?

  A. The principle of lawful, fair, and transparent processing
  B. The right to be forgotten principle of personal data erasure requests
  C. The non-repudiation and deniability principle
  D. The principle of encryption, obfuscation, and data masking
  A. The principle of lawful, fair, and transparent processing

  ---

  Explanation

• Question 526:

  A security architect works for a manufacturing organization that has many different branch offices. The architect is looking for a way to reduce traffic and ensure the branch offices receive the latest copy of revoked certificates issued by the CA at the organization's headquarters location. The solution must also have the lowest power requirement on the CA.

  Which of the following is the BEST solution?

  A. Deploy an RA on each branch office.
  B. Use Delta CRLs at the branches.
  C. Configure clients to use OCSP.
  D. Send the new CRLs by using GPO.
  C. Configure clients to use OCSP.

  ---

  Explanation

• Question 527:

  A company is on a deadline to roll out an entire CRM platform to all users at one time. However, the company is behind schedule due to reliance on third-party vendors. Which of the following development approaches will allow the company to begin releases but also continue testing and development for future releases?

  A. Implement iterative software releases
  B. Revise the scope of the project to use a waterfall approach.
  C. Change the scope of the project to use the spiral development methodology.
  D. Perform continuous integration.
  A. Implement iterative software releases

  ---

  Explanation

  Implementing iterative software releases, also known as an iterative or incremental development approach, involves breaking the project into smaller, manageable iterations or increments. Each iteration delivers a functioning subset of the CRM platform with essential features. This allows the company to begin releasing the product to users incrementally, even if not all the planned features are fully developed yet. Subsequent iterations build upon the previous ones, adding new features, improvements, and fixes.

  By following an iterative approach, the company can start delivering value to users earlier and meet their immediate needs, even if the full CRM platform is not yet complete. Additionally, it allows for continuous testing and feedback from users throughout the development process, which helps identify issues early and prioritize future development efforts based on user feedback.

• Question 528:

  A company launched a new service and created a landing page within its website network for users to access the service. Per company policy, all websites must utilize encryption for any authentication pages. A junior network administrator proceeded to use an outdated procedure to order new certificates. Afterward, customers are reporting the following error when accessing a new web page: NET:ERR_CERT_COMMON_NAME_INVALID. Which of the following BEST describes what the administrator should do NEXT?

  A. Request a new certificate with the correct subject alternative name that includes the new websites.
  B. Request a new certificate with the correct organizational unit for the company's website.
  C. Request a new certificate with a stronger encryption strength and the latest cipher suite.
  D. Request a new certificate with the same information but including the old certificate on the CRL.
  A. Request a new certificate with the correct subject alternative name that includes the new websites.

  ---

  Explanation

• Question 529:

  A user experiences an HTTPS connection error when trying to access an Internet banking website from a corporate laptop. The user then opens a browser on a mobile phone and is able to access the same Internet banking website without issue. Which of the following security configurations is MOST likely the cause of the error?

  A. HSTS
  B. TLS 1.2
  C. Certificate pinning
  D. Client authentication
  C. Certificate pinning

  ---

  Explanation

• Question 530:

  A security engineer notices the company website allows users to select which country they reside in, such as the following example:

  hitps://mycompany.com/main.php?Country=US

  Which of the following vulnerabilities would MOST likely affect this site?

  A. SQL injection
  B. Remote file inclusion
  C. Directory traversal
  D. Unsecure references
  C. Directory traversal

  ---

  Explanation

  In a directory traversal attack, an attacker attempts to access files or directories that are located outside the web root directory or intended area. The URL parameter "Country=US" could potentially be manipulated by an attacker to traverse directories and access files they shouldn't have access to.