nerdexam
ExamsCAS-001Questions#227
CompTIA

CAS-001 · Question #227

CAS-001 Question #227: Real Exam Question with Answer & Explanation

The correct answer is D: Application sandboxing. Application sandboxing executes code in a tightly restricted, isolated environment that prevents it from making persistent changes to the host operating system or other system data.

Question

Which of the following refers to programs running in an isolated space to run untested code and prevents the code from making permanent changes to the OS kernel and other data on the host machine?

Options

  • AInput Validation
  • BApplication hardening
  • CCode signing
  • DApplication sandboxing

Explanation

Application sandboxing executes code in a tightly restricted, isolated environment that prevents it from making persistent changes to the host operating system or other system data.

Common mistakes.

  • A. Input validation checks and sanitizes data supplied by users or external sources to prevent injection attacks but does not isolate code execution from the host OS.
  • B. Application hardening reduces an application's attack surface by removing unnecessary features and applying security configurations but does not create an isolated execution environment.
  • C. Code signing verifies that code came from a trusted author and has not been modified but does not restrict what the code can do at runtime.

Concept tested. Application sandboxing for isolated code execution

Reference. https://learn.microsoft.com/en-us/windows/security/threat-protection/windows-sandbox/windows-sandbox-overview

Community Discussion

No community discussion yet for this question.

Sign up to join the discussion
Full CAS-001 Practice
Which of the following refers to programs running in an isolated... | CAS-001 Q#227 Answer | NerdExam