nerdexam
ExamsCAS-002Questions#99
CompTIA

CAS-002 · Question #99

CAS-002 Question #99: Real Exam Question with Answer & Explanation

The correct answer is A: Emerging business requirements led to the de-perimiterization of the network.. Over time, researchers bypassed the original firewall perimeter by connecting directly to external resources and adding wireless devices, a process known as de-perimeterization.

Question

An existing enterprise architecture included an enclave where sensitive research and development work was conducted. This network enclave also served as a storage location for proprietary corporate data and records. The initial security architect chose to protect the enclave by restricting access to a single physical port on a firewall. All downstream network devices were isolated from the rest of the network and communicated solely through the single 100mbps firewall port. Over time, researchers connected devices on the protected enclave directly to external resources and corporate data stores. Mobile and wireless devices were also added to the enclave to support high speed data research. Which of the following BEST describes the process which weakened the security posture of the enclave?

Options

  • AEmerging business requirements led to the de-perimiterization of the network.
  • BEmerging security threats rendered the existing architecture obsolete.
  • CThe single firewall port was oversaturated with network packets.
  • DThe shrinking of an overall attack surface due to the additional access.

Explanation

Over time, researchers bypassed the original firewall perimeter by connecting directly to external resources and adding wireless devices, a process known as de-perimeterization.

Common mistakes.

  • B. No new external threats are described; the weakening resulted from internal architectural drift, not from threat evolution rendering controls obsolete.
  • C. Port saturation would cause performance degradation and dropped packets, not a loss of access controls or a weakened security posture.
  • D. The attack surface grew rather than shrank because new uncontrolled access points were added, increasing exposure to external threats.

Concept tested. Network de-perimeterization and enclave security erosion

Reference. https://csrc.nist.gov/publications/detail/sp/800-41/rev-1/final

Community Discussion

No community discussion yet for this question.

Sign up to join the discussion
Full CAS-002 Practice