Valid CAS-004 Dumps shared by ExamDiscuss.com for Helping Passing CAS-004 Exam! ExamDiscuss.com now offer the newest CAS-004 exam dumps, the ExamDiscuss.com CAS-004 exam questions have been updated and answers have been corrected get the newest ExamDiscuss.com CAS-004 dumps with Test Engine here:
A security administrator is trying to securely provide public access to specific data from a web application. Clients who want to access the application will be required to: * Only allow the POST and GET options. * Transmit all data secured with TLS 1.2 or greater. * Use specific URLs to access each type of data that is requested. * Authenticate with a bearer token. Which of the following should the security administrator recommend to meet these requirements?
Correct Answer: A
An API gateway is the best solution to meet the specified requirements for securely providing public access to specific data. An API gateway allows the administrator to control HTTP methods like POST and GET, ensure secure transmission via TLS 1.2 or greater, and enforce authentication using bearer tokens. It also allows access control by specifying URLs for different types of data. API gateways centralize security and traffic management for APIs, making them ideal for this type of secure access scenario. CASP+ emphasizes the importance of API gateways in managing and securing web application interfaces. References: * CASP+ CAS-004 Exam Objectives: Domain 3.0 - Enterprise Security Architecture (API Security and API Gateways) * CompTIA CASP+ Study Guide: Securing Web Application Interfaces with API Gateways