A corporate security policy specifies that all devices on the network must have updated operating system patches and anti-malware software. Which technology should be used to enforce this policy?
Correct Answer: D
Network Access Control (NAC) is a technology that can enforce a corporate security policy by checking the compliance status of the devices that attempt to connect to the network. NAC can verify if the devices have updated operating system patches and anti-malware software, and grant or deny access accordingly. Option A, Network Address Translation (NAT), is a technology that can translate the IP addresses of the devices on a network, but it does not check their compliance status. Option B, Stateful Inspection, is a technology that can monitor the state and context of the network traffic, but it does not check the compliance status of the devices.
Option C, Packet filtering, is a technology that can filter the network traffic based on predefined rules, but it does not check the compliance status of the devices. References: CISSP Practice Exam | Boson, CISSP All-in-One Exam Guide, Eighth Edition