무료 온라인 액세스 CompTIA.CAS-003.v2022-12-20.q589 모의 시험 (Page 24)

CAS-003 문제 111

A company's chief cybersecurity architect wants to configure mutual authentication to access an internal payroll website.
The architect has asked the administration team to determine the configuration that would provide the best defense against MITM attacks.
Which of the following implementation approaches would BEST support the architect's goals?

A. Configure a web application proxy and institute monitoring of HTTPS transactions.

B. Utilize a challenge-response prompt as required input at username/password entry.

C. Install a reverse proxy in the corporate DMZ configured to decrypt TLS sessions.

D. Implement TLS and require the client to use its own certificate during handshake.

CAS-003 문제 112

First responders, who are part of a core incident response team, have been working to contain an outbreak of ransomware that also led to data loss in a rush to isolate the three hosts that were calling out to the NAS to encrypt whole directories, the hosts were shut down immediately without investigation and then isolated. Which of the following were missed? (Choose two.)

A. Temporaryfilesystemandswapspace

B. Essentialinformationneeded to performdatarestoration to a known cleanstate

C. Chainofcustodyinformationneeded forinvestigation

D. Indicatorsofcompromiseto determine ransomwareencryption

E. CPU,processstatetables,andmain memorydumps

CAS-003 문제 113

A security analyst is investigating an alert arising from an impossible travel pattern Within the span of 30 minutes, the email system saw successful authentication from two IP addresses, which geolocate more than 500mi (806km) away from each other Before locking the account which of the following actions should the analyst take?

A. Verify email server NTP synchronization status

B. Review VPN authentication logs

C. Validate GeolP data source

D. Verify the user's recent travel activities

CAS-003 문제 114

A security administrator wants to allow external organizations to cryptographically validate the company's domain name in email messages sent by employees. Which of the following should the security administrator implement?

A. SPF

B. S/MIME

C. TLS

D. DKIM

CAS-003 문제 115

A well-known retailer has experienced a massive credit card breach. The retailer had gone through an audit and had been presented with a potential problem on their network. Vendors were authenticating directly to the retailer's AD servers, and an improper firewall rule allowed pivoting from the AD server to the DMZ where credit card servers were kept. The firewall rule was needed for an internal application that was developed, which presents risk. The retailer determined that because the vendors were required to have site to site VPN's no other security action was taken.
To prove to the retailer the monetary value of this risk, which of the following type of calculations is needed?

A. Residual Risk calculation

B. A cost/benefit analysis

C. Quantitative Risk Analysis

D. Qualitative Risk Analysis

다른 버전: 5007CompTIA.CAS-003.v2022-07-04.q589; 2159CompTIA.CAS-003.v2022-05-09.q215

최근 업로드: 112Supermicro.SMI300XS.v2025-09-08.q15; 114Oracle.1z0-1104-25.v2025-09-08.q12; 104SAP.C-LIXEA-2404.v2025-09-08.q60; 106Cisco.300-730.v2025-09-08.q143; 104Huawei.H19-308_V4.0.v2025-09-08.q77; 116Nutanix.NCA-6.5.v2025-09-08.q56; 113CompTIA.CV0-003.v2025-09-08.q131; 117SAP.C-TS470-2412.v2025-09-08.q27; 107Oracle.1Z0-1122-25.v2025-09-08.q15; 109ATLASSIAN.ACP-620.v2025-09-08.q60