Valid CAS-004 Dumps shared by ExamDiscuss.com for Helping Passing CAS-004 Exam! ExamDiscuss.com now offer the newest CAS-004 exam dumps, the ExamDiscuss.com CAS-004 exam questions have been updated and answers have been corrected get the newest ExamDiscuss.com CAS-004 dumps with Test Engine here:
A security analyst is reviewing the following output from a vulnerability scan of an organization's internet- facing web services: *Line 06: Hostname sent via SNI does not match certificate. *Line 10: Certificate not validated by OCSP. *Line 13: Weak SHA-1 signature algorithm detected. *Line 17: TLS 1.2 cipher suite negotiated. *Line 18: SSL session not using forward secrecy. Which of the following indicates a susceptibility whereby an attacker can take advantage of the trust relationship between the client and the server?
Correct Answer: A
The mismatch between the hostname sent via SNI and the certificate undermines the trust relationship. Attackers can exploit this to conduct man-in-the-middle (MITM) attacks. This aligns with CASP+ objective 1.4, which addresses managing vulnerabilities in secure communication protocols. ________________________________________