CompTIA CompTIA Certifications CAS-005 Questions & Answers

• Question 11:

  Two companies that recently merged would like to unify application access between the companies, without initially merging internal authentication stores. Which of the following technical strategies would best meet this objective?

  A. Federation

  B. RADIUS

  C. TACACS+

  D. MFA

  E. ABAC

  Correct Answer: A

  Federation (option A) is the best technical strategy for allowing two recently merged companies to unify application access while keeping their internal authentication stores separate. It provides a secure, seamless, and standardized approach to authentication and authorization across organizational boundaries, ensuring efficient and controlled access to shared applications and resources.

• Question 12:

  A security analyst is participating in a risk assessment and is helping to calculate the exposure factor associated with various systems and processes within the organization. Which of the following resources would be most useful to calculate the exposure factor in this scenario?

  A. Gap analysis

  B. Business impact analysis

  C. Risk register

  D. Information security policy

  E. Lessons learned

  Correct Answer: B

• Question 13:

  A security architect is reviewing the following organizational specifications for a new application:

  1.

  Be sessionless and API-based

  2.

  Accept uploaded documents with PII, so all storage must be ephemeral

  3.

  Be able to scale on-demand across multiple nodes

  4.

  Restrict all network access except for the TLS port

  Which of the following ways should the architect recommend the application be deployed in order to meet security and organizational infrastructure requirements?

  A. Utilizing the cloud container service

  B. On server instances with autoscaling groups

  C. Using scripted delivery

  D. With a content delivery network

  Correct Answer: A

  Deploying the application using a cloud container service aligns well with the specified security and organizational infrastructure requirements. It ensures sessionless, API-based operation, supports ephemeral storage for uploaded documents with PII, enables on-demand scalability across multiple nodes, and facilitates strict restriction of network access except for the TLS port.

• Question 14:

  A company recently deployed new servers to create an additional cluster to support a new application. The corporate security policy states that all new servers must be resilient. The new cluster has a high- availability configuration for a smooth failover. The failover was successful following a recent power outage, but both clusters lost critical data, which impacted recovery time. Which of the following needs to be configured to help ensure minimal delays when power outages occur in the future?

  A. Replication

  B. Caching

  C. Containerization

  D. Redundancy

  E. High availability

  Correct Answer: A

  Based on the requirement to reduce delays during power outages and the scenario's description of data loss despite high availability, configuring replication (option A) is crucial. Replication ensures that critical data is duplicated across clusters, allowing seamless failover and access to data from alternative locations in the event of server failures or power outages. This approach directly addresses the need for data resilience and continuity, ensuring minimal impact on operations during unforeseen disruptions. Thus, replication is the most suitable solution to enhance the company's data resilience and reduce recovery times during power outages.

• Question 15:

  A company has been the target of LDAP injections, as well as brute-force, whaling, and spear-phishing attacks. The company is concerned about ensuring continued system access. The company has already implemented a SSO system with strong passwords. Which of the following additional controls should the company deploy?

  A. Two-factor authentication

  B. Identity proofing

  C. Challenge questions

  D. Live identity verification

  Correct Answer: A

• Question 16:

  A company has identified a number of vulnerable, end-of-support systems with limited defensive capabilities. Which of the following would be the first step in reducing the attack surface in this environment?

  A. Utilizing hardening recommendations

  B. Deploying IPS/IDS throughout the environment

  C. Installing and updating antivirus

  D. Installing all available patches

  Correct Answer: A

• Question 17:

  A junior security researcher has identified a buffer overflow vulnerability leading to remote code execution in a former employer's software. The security researcher asks for the manager's advice on the vulnerability submission process. Which of the following is the best advice the current manager can provide the security researcher?

  A. Collect proof that the exploit works in order to expedite the process.

  B. Publish proof-of-concept exploit code on a personal blog.

  C. Recommend legal consultation about the process.

  D. Visit a bug bounty website for the latest information.

  Correct Answer: C

  Legal consultation is crucial before proceeding with any vulnerability disclosure process, especially when dealing with vulnerabilities found in former employers' software. It ensures that the researcher adheres to legal and ethical standards, protects their rights, and avoids potential legal risks associated with disclosure. Therefore, advising the security researcher to seek legal consultation is the most prudent course of action in this situation.

• Question 18:

  The primary advantage of an organization creating and maintaining a vendor risk registry is to:

  A. define the risk assessment methodology.

  B. study a variety of risks and review the threat landscape.

  C. ensure that inventory of potential risk is maintained.

  D. ensure that all assets have low residual risk.

  Correct Answer: C

  The primary advantage of creating and maintaining a vendor risk registry is to ensure that the organization maintains an inventory of potential risks posed by its vendors. This enables proactive risk management, compliance with regulatory requirements, and effective monitoring and assessment of vendor-related risks over time. By having a comprehensive view of vendor risks, organizations can make informed decisions to protect their operations and assets from potential harm arising from vendor relationships.

• Question 19:

  A security administrator is setting up a virtualization solution that needs to run services from a single host. Each service should be the only one running in its environment. Each environment needs to have its own operating system as a base but share the kernel version and properties of the running host. Which of the following technologies would best meet these requirements?

  A. Containers

  B. Type 1 hypervisor

  C. Type 2 hypervisor

  D. Virtual desktop infrastructure

  E. Emulation

  Correct Answer: A

  Containers are the most suitable technology for the scenario described by the security administrator. They allow each service to run in its own isolated environment with its own filesystem and processes while sharing the host's kernel. This meets the requirement of having separate OS environments for each service but leveraging the common properties and kernel version of the host system, ensuring efficient resource utilization and isolation between services.

• Question 20:

  A company has a website with a huge database. The company wants to ensure that a DR site could be brought online quickly in the event of a failover, and end users would miss no more than 30 minutes of data. Which of the following should the company do to meet these objectives?

  A. Build a content caching system at the DR site.

  B. Store the nightly full backups at the DR site.

  C. Increase the network bandwidth to the DR site.

  D. Implement real-time replication for the DR site.

  Correct Answer: D