CAS-002 · Question #483
CAS-002 Question #483: Real Exam Question with Answer & Explanation
The correct answer is B: Least privileges. By assigning the least privileges needed for each user, the odds of privilege escalation are reduced. The principle of least privilege gives a user only those privileges that are essential to do his/her work. In information security, computer science, and other fields, the princi
Question
Options
- ASingle point of failure
- BLeast privileges
- CImplicit deny
- DJob rotation
Explanation
By assigning the least privileges needed for each user, the odds of privilege escalation are reduced. The principle of least privilege gives a user only those privileges that are essential to do his/her work. In information security, computer science, and other fields, the principle of least privilege is also known as the principle of minimal privilege or least privilege. It defines that in a particular abstraction layer of a computing environment, every module must be able to access only the information and resources that are essential for its legitimate purpose, it requires that each subject in a system be granted the most restrictive set of privileges required for authorized Answer option D is incorrect. Job rotation, while a good security concept, will have no effect on privilege escalation. Answer option C is incorrect. Implicitly denying any user any access until authorized, won't affect privilege escalation. Answer option A is incorrect. A single point of failure is actually a negative, and does not improve
Community Discussion
No community discussion yet for this question.