CAS-003 · Question #95
CAS-003 Question #95: Real Exam Question with Answer & Explanation
The correct answer is D: Behavior based IPS with a communication link to a cloud based vulnerability and threat feed.. Good preventive security practices are a must. These include installing and keeping firewall policies carefully matched to business and application needs, keeping antivirus software updated, blocking potentially harmful file attachments and keeping all systems patched against kno
Question
Options
- ACloud-based antivirus solution, running as local admin, with push technology for definition
- BImplementation of an offsite data center hosting all company data, as well as deployment of VDI
- CHost based heuristic IPS, segregated on a management VLAN, with direct control of the
- DBehavior based IPS with a communication link to a cloud based vulnerability and threat feed.
Explanation
Good preventive security practices are a must. These include installing and keeping firewall policies carefully matched to business and application needs, keeping antivirus software updated, blocking potentially harmful file attachments and keeping all systems patched against known vulnerabilities. Vulnerability scans are a good means of measuring the effectiveness of preventive procedures. Real-time protection: Deploy inline intrusion- prevention systems (IPS) that offer comprehensive protection. When considering an IPS, seek the following capabilities: network- level protection, application integrity checking, application protocol Request for Comment (RFC) validation, content validation and forensics capability. In this case it would be behavior-based IPS with a communication link to a cloud-based vulnerability and threat feed.
Community Discussion
No community discussion yet for this question.