Free Access CompTIA.CAS-003.v2022-05-05.q206 Practice Test (Page 42)

Question 201

An organization designs and develops safety-critical embedded firmware (inclusive of embedded OS and services) for the automotive industry. The organization has taken great care to exercise secure software development practices for the firmware Of paramount importance is the ability to defeat attacks aimed at replacing or corrupting running firmware once the vehicle leaves production and is in the field Integrating, which of the following host and OS controls would BEST protect against this threat?

A.Perform reverse engineering of the hardware to assess for any implanted logic or other supply chain integrity violations

B.Require software engineers to adhere to a coding standard, leverage static and dynamic analysis within the development environment, and perform exhaustive state space analysis before deployment

C.Ensure the firmware includes anti-malware services that will monitor and respond to any introduction of malicious logic.

D.Configure the host to require measured boot with attestation using platform configuration registers extended through the OS and into application space.

E.Implement out-of-band monitoring to analyze the state of running memory and persistent storage and, in a failure mode, signal a check-engine light condition for the operator.

Question 202

A security technician is incorporating the following requirements in an RFP for a new SIEM:
New security notifications must be dynamically implemented by the SIEM engine The SIEM must be able to identify traffic baseline anomalies Anonymous attack data from all customers must augment attack detection and risk scoring Based on the above requirements, which of the following should the SIEM support? (Choose two.)

A.Autoscaling search capability

B.Machine learning

C.Centralized log aggregation

D.Multisensor deployment

E.Cloud-based management

F.Big Data analytics

Question 203

The security administrator of a small firm wants to stay current on the latest security vulnerabilities and attack vectors being used by crime syndicates and nation-states. The information must be actionable and reliable. Which of the following would BEST meet the needs of the security administrator?

A.White papers

B.Threat data subscription

C.Software vendor threat reports

D.Security blogs

Question 204

A corporation with a BYOD policy is very concerned about issues that may arise from data ownership. The corporation is investigating a new MDM solution and has gathered the following requirements as part of the requirements-gathering phase.
* Each device must be issued a secure token of trust from the corporate PKI.
* All corporate application and local data must be able to deleted from a central console.
* Cloud storage and backup applications must be restricted from the device.
* Devices must be on the latest OS version within three weeks of an OS release.
Which of the following should be feature in the new MDM solution to meet these requirement? (Select TWO.)

A.Biometric requirement to unlock device

B.Side-loaded application prevention

C.Application-based containerization

D.Over-the-air restriction

E.Enforced full-device encryption

F.Mandatory acceptance of SCEP system

Question 205

An engineer maintains a corporate-owned mobility infrastructure, and the organization requires that all web browsing using corporate-owned resources be monitored.
Which of the following would allow the organization to meet its requirement? (Choose two.)

A.Exempt mobile devices from the requirement, as this will lead to privacy violations

B.Implement a VDI solution and deploy supporting client apps to devices

C.Restrict application permissions to establish only HTTPS connections outside of the enterprise boundary

D.Configure all management traffic to be tunneled into the enterprise via TLS

E.Configure the devices to use an always-on IPSec VPN

Other Version: 7454CompTIA.CAS-003.v2022-09-22.q535; 6488CompTIA.CAS-003.v2022-08-15.q472; 2972CompTIA.CAS-003.v2022-04-30.q141; 84CompTIA.Actualtestpdf.CAS-003.v2022-01-19.by.morgan.327q.pdf

Latest Upload: 105OCEG.GRCP.v2025-09-11.q211; 104HP.HPE0-V27.v2025-09-11.q78; 118Oracle.1Z0-1057-23.v2025-09-10.q47; 150Google.Professional-Cloud-Network-Engineer.v2025-09-09.q179; 131SAP.C-S4EWM-2023.v2025-09-08.q83; 164TheSecOpsGroup.CNSP.v2025-09-08.q20; 223CFAInstitute.ESG-Investing.v2025-09-08.q173; 158PECB.ISO-IEC-27001-Lead-Implementer.v2025-09-06.q132; 148Salesforce.Data-Architect.v2025-09-05.q216; 143Adobe.AD0-E605.v2025-09-05.q50

Question 201

Question 202

Question 203

Question 204

Question 205

Download PDF File