nerdexam
ExamsCAS-002Questions#545
CompTIA

CAS-002 · Question #545

CAS-002 Question #545: Real Exam Question with Answer & Explanation

The correct answer is D: Application sandboxing. Application sandboxing isolates untested or untrusted code in a restricted execution environment, preventing it from permanently modifying the OS kernel or other host data.

Question

Which of the following refers to programs running in an isolated space to run untested code and prevents the code from making permanent changes to the OS kernel and other data on the host machine?

Options

  • AInput Validation
  • BApplication hardening
  • CCode signing
  • DApplication sandboxing

Explanation

Application sandboxing isolates untested or untrusted code in a restricted execution environment, preventing it from permanently modifying the OS kernel or other host data.

Common mistakes.

  • A. Input validation sanitizes data entering an application to prevent injection attacks but does not create an isolated execution environment for untested code.
  • B. Application hardening reduces an application's attack surface through secure configuration and patch management but does not isolate code execution from the underlying OS.
  • C. Code signing uses cryptographic signatures to verify software authenticity and integrity but does not restrict or isolate how the code executes on the host system.

Concept tested. Application sandboxing isolating untested code from host OS

Reference. https://csrc.nist.gov/glossary/term/sandbox

Community Discussion

No community discussion yet for this question.

Sign up to join the discussion
Full CAS-002 Practice