FREE CompTIA Advanced Security Practitioner (CASP+) CAS-004 Questions and Answers

Question 1

To ensure that users can only access the resources they need to complete specific tasks, permissions must be provided. Which security principle ought to be used to fulfill the requirement?

Accepted Answer

Least privilege

Answer

Need to know

Answer

Job rotation

Answer

Separation of duties

Question 2

Security testing must have a low risk of influencing system stability because the company is in production. According to the board of directors, a third party won't have the development team's knowledge. Which of the subsequent tests is the ideal choice?

Accepted Answer

Development and security assurance teams do white-box testing.

Answer

A prominent external consulting firm conducted black-box testing.

Answer

Development and security assurance teams do gray-box testing.

Answer

A large consulting firm conducted gray-box testing.

Question 3

A keylogger is being operated by a Meterpreter shell on the CFO's laptop. What security principle is the keylogger most likely to violate?

Accepted Answer

Confidentiality

Answer

Threats

Answer

Availability

Answer

Integrity

Question 4

You'll require a contract that enables your business to create a comprehensive risk allocation strategy and offers indemnity, a tactic for shielding one party from present or future losses. On which contract should you attempt to come to an understanding?

Accepted Answer

Service Master Agreement

Answer

Security agreement for interconnection

Answer

Agreement on the economic impact

Answer

Memorandum of Agreement

Question 5

Your business began examining various systems for a project that was technical in nature and security-related. You narrowed down your options to three companies, and each of them submitted you an RFI. What is the following request you are going to make to those three vendors?

Accepted Answer

RFQ

Answer

RFP

Answer

RFC

Answer

RFI

Question 6

As a security architect, you implemented two firewalls, an IPS, and ACLs. All of the files on this network are replicated to a tape backup once every 24 hours. Which security principle is this backup solution designed to address?

Accepted Answer

Availability

Answer

Distribution

Answer

Confidentiality

Answer

None of the above

Question 7

You oversee the security of a network that uses Fibre Channel over Ethernet (FCoE). The network administrator wishes to restore raw data to a separate host by removing it from the storage array. Which one of the following might affect availability?

Accepted Answer

It's possible that the data isn't in a suitable format

Answer

The procedure may result in bottlenecks.

Answer

Deduplication will result in data mistakes.

Answer

It's possible that the new host won't work with FCoE.