Valid CAS-005 Dumps shared by ExamDiscuss.com for Helping Passing CAS-005 Exam! ExamDiscuss.com now offer the newest CAS-005 exam dumps, the ExamDiscuss.com CAS-005 exam questions have been updated and answers have been corrected get the newest ExamDiscuss.com CAS-005 dumps with Test Engine here:
Access CAS-005 Dumps Premium Version
(250 Q&As Dumps, 35%OFF Special Discount Code: freecram)
<< Prev Question Next Question >>
Question 12/56
A security analyst Detected unusual network traffic related to program updating processes The analyst collected artifacts from compromised user workstations. The discovered artifacts were binary files with the same name as existing, valid binaries but. with different hashes which of the following solutions would most likely prevent this situation from reoccurring?
Correct Answer: B
Implementing digital signatures ensures the integrity and authenticity of software binaries. When a binary is digitally signed, any tampering with the file (e.g., replacing it with a malicious version) would invalidate the signature. This allows systems to verify the origin and integrity of binaries before execution, preventing the execution of unauthorized or compromised binaries.
* A. Improving patching processes: While important, this does not directly address the issue of verifying the integrity of binaries.
* B. Implementing digital signatures: This ensures that only valid, untampered binaries are executed, preventing attackers from substituting legitimate binaries with malicious ones.
* C. Performing manual updates via USB ports: This is not practical and does not scale well, especially in large environments.
* D. Allowing only files from internal sources: This reduces the risk but does not provide a mechanism to verify the integrity of binaries.
References:
* CompTIA Security+ Study Guide
* NIST SP 800-57, "Recommendation for Key Management"
* OWASP (Open Web Application Security Project) guidelines on code signing
* A. Improving patching processes: While important, this does not directly address the issue of verifying the integrity of binaries.
* B. Implementing digital signatures: This ensures that only valid, untampered binaries are executed, preventing attackers from substituting legitimate binaries with malicious ones.
* C. Performing manual updates via USB ports: This is not practical and does not scale well, especially in large environments.
* D. Allowing only files from internal sources: This reduces the risk but does not provide a mechanism to verify the integrity of binaries.
References:
* CompTIA Security+ Study Guide
* NIST SP 800-57, "Recommendation for Key Management"
* OWASP (Open Web Application Security Project) guidelines on code signing
- Question List (56q)
- Question 1: A systems administrator wants to reduce the number of failed...
- Question 2: Within a SCADA a business needs access to the historian serv...
- Question 3: An organization is required to * Respond to internal and ext...
- Question 4: A company lined an email service provider called my-email.co...
- Question 5: A cloud engineer needs to identify appropriate solutions to:...
- Question 6: A company's help desk is experiencing a large number of call...
- Question 7: An organization wants to manage specialized endpoints and ne...
- Question 8: A company that relies on an COL system must keep it operatin...
- Question 9: A company updates its cloud-based services by saving infrast...
- Question 10: A security engineer wants to reduce the attack surface of a ...
- Question 11: A financial technology firm works collaboratively with busin...
- Question 12: A security analyst Detected unusual network traffic related ...
- Question 13: During a security assessment using an CDR solution, a securi...
- Question 14: Users are experiencing a variety of issues when trying to ac...
- Question 15: A security engineer is given the following requirements: * A...
- Question 16: A company receives several complaints from customers regardi...
- Question 17: A news organization wants to implement workflows that allow ...
- Question 18: A global manufacturing company has an internal application m...
- Question 19: A company wants to invest in research capabilities with the ...
- Question 20: The material finding from a recent compliance audit indicate...
- Question 21: During a gap assessment, an organization notes that OYOD usa...
- Question 22: A security engineer is developing a solution to meet the fol...
- Question 23: (Exhibit) Which of the following is the security engineer mo...
- Question 24: (Exhibit) An organization is planning for disaster recovery ...
- Question 25: The identity and access management team is sending logs to t...
- Question 26: A security architect for a global organization with a distri...
- Question 27: After some employees were caught uploading data to online pe...
- Question 28: Company A and Company D ate merging Company A's compliance r...
- Question 29: Which of the following AI concerns is most adequately addres...
- Question 30: A security analyst discovered requests associated with IP ad...
- Question 31: Company A acquired Company B and needs to determine how the ...
- Question 32: A software development team requires valid data for internal...
- Question 33: A company is having issues with its vulnerability management...
- Question 34: A systems administrator wants to use existing resources to a...
- Question 35: A senior security engineer flags me following log file snipp...
- Question 36: Recent repents indicate that a software tool is being exploi...
- Question 37: A company's security policy states that any publicly availab...
- Question 38: A company isolated its OT systems from other areas of the co...
- Question 39: A vulnerability can on a web server identified the following...
- Question 40: A company that uses containers to run its applications is re...
- Question 41: A security analyst wants to use lessons learned from a poor ...
- Question 42: Which of the following best explains the importance of deter...
- Question 43: A security engineer needs 10 secure the OT environment based...
- Question 44: A systems administrator wants to introduce a newly released ...
- Question 45: An incident response team is analyzing malware and observes ...
- Question 46: A cybersecurity architect is reviewing the detection and mon...
- Question 47: A user reports application access issues to the help desk. T...
- Question 48: A developer needs to improve the cryptographic strength of a...
- Question 49: An organization mat performs real-time financial processing ...
- Question 50: All organization is concerned about insider threats from emp...
- Question 51: Which of the following best explains the business requiremen...
- Question 52: During the course of normal SOC operations, three anomalous ...
- Question 53: A product development team has submitted code snippets for r...
- Question 54: Asecuntv administrator is performing a gap assessment agains...
- Question 55: A security administrator needs to automate alerting. The ser...
- Question 56: An organization is implementing Zero Trust architecture A sy...
