Free Access CompTIA.CAS-003.v2022-08-15.q472 Practice Test (Page 39)

Question 186

A security consultant is considering authentication options for a financial institution. The following authentication options are available. Drag and drop the security mechanism to the appropriate use case.
Options may be used once.

Question 187

A bank is in the process of developing a new mobile application. The mobile client renders content and communicates back to the company servers via REST/JSON calls. The bank wants to ensure that the communication is stateless between the mobile application and the web services gateway. Which of the following controls MUST be implemented to enable stateless communication?

A.Generate a one-time key as part of the device registration process.

B.Require SSL between the mobile application and the web services gateway.

C.The jsession cookie should be stored securely after authentication.

D.Authentication assertion should be stored securely on the client.

Question 188

An asset manager is struggling with the best way to reduce the time required to perform asset location activities in a large warehouse.
A project manager indicated that RFID might be a valid solution if the asset manager's requirements were supported by current RFID capabilities.
Which of the following requirements would be MOST difficult for the asset manager to implement?

A.The ability to track assets in real time as they move throughout the facility

B.The ability to encrypt RFID data in transmission

C.The ability to assign RFID tags a unique identifier

D.The ability to integrate environmental sensors into the RFID tag

Question 189

A company monitors the performance of all web servers using WMI. A network administrator informs the security engineer that web servers hosting the company's client- facing portal are running slowly today. After some investigation, the security engineer notices a large number of attempts at enumerating host information via SNMP from multiple IP addresses. Which of the following would be the BEST technique for the security engineer to employ in an attempt to prevent reconnaissance activity?

A.Install a HIPS on the web servers

B.Install anti-DDoS protection in the DMZ

C.Disable inbound traffic from offending sources

D.Disable SNMP on the web servers

Question 190

A security team wants to keep up with emerging threats more efficiently by automating NIDS signature development and deployment Which of the following approaches, would BEST support this objective?

A.Use open-source intelligence sources to gather current information on adversary networks/systems

B.Configure NIDS to operate inline and use a DNS whitelist

C.Subscribe to a commercial service provider that publishes IOCs

D.Monitor cyberthreat newsgroups and translate articles into IDSIPS rulesets

Other Version: 7526CompTIA.CAS-003.v2022-09-22.q535; 4322CompTIA.CAS-003.v2022-05-05.q206; 2991CompTIA.CAS-003.v2022-04-30.q141; 84CompTIA.Actualtestpdf.CAS-003.v2022-01-19.by.morgan.327q.pdf

Latest Upload: 104Oracle.1z0-1196-25.v2025-09-12.q18; 103NetworkAppliance.NS0-162.v2025-09-12.q86; 144OCEG.GRCP.v2025-09-11.q211; 106HP.HPE0-V27.v2025-09-11.q78; 122Oracle.1Z0-1057-23.v2025-09-10.q47; 157Google.Professional-Cloud-Network-Engineer.v2025-09-09.q179; 136SAP.C-S4EWM-2023.v2025-09-08.q83; 180TheSecOpsGroup.CNSP.v2025-09-08.q20; 254CFAInstitute.ESG-Investing.v2025-09-08.q173; 240PECB.ISO-IEC-27001-Lead-Implementer.v2025-09-06.q132

Question 186

Question 187

Question 188

Question 189

Question 190

Download PDF File