nerdexam
ExamsCAS-002Questions#551
CompTIA

CAS-002 · Question #551

CAS-002 Question #551: Real Exam Question with Answer & Explanation

The correct answer is A: Anti-malware/virus/spyware/spam software, as well as a host based firewall and strong,. A complete server endpoint security plan requires the broadest malware coverage, a host-based firewall, and strong multi-factor authentication working together.

Question

After implementing port security, restricting all network traffic into and out of a network, migrating to IPv6, installing NIDS, firewalls, spam and application filters, a security administer is convinced that the network is secure. The administrator now focuses on securing the hosts on the network, starting with the servers. Which of the following is the MOST complete list of end-point security software the administrator could plan to implement?

Options

  • AAnti-malware/virus/spyware/spam software, as well as a host based firewall and strong,
  • BAnti-virus/spyware/spam software, as well as a host based IDS, firewall, and strong
  • CAnti-malware/virus/spyware/spam software, as well as a host based firewall and biometric
  • DAnti-malware/spam software, as well as a host based firewall and strong, three-factor

Explanation

A complete server endpoint security plan requires the broadest malware coverage, a host-based firewall, and strong multi-factor authentication working together.

Common mistakes.

  • B. Choice B uses the narrower term 'anti-virus' rather than 'anti-malware,' leaving modern malware categories uncovered, and adds only a host-based IDS which is detection-only rather than prevention.
  • C. Choice C replaces strong multi-factor authentication with biometric authentication alone, which is a single authentication factor and provides incomplete access control coverage.
  • D. Choice D omits anti-virus and anti-spyware from its protection list, leaving significant threat vectors unaddressed on the server endpoint.

Concept tested. Comprehensive endpoint security software components for servers

Reference. https://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-128.pdf

Community Discussion

No community discussion yet for this question.

Sign up to join the discussion
Full CAS-002 Practice