CAS-005 · Question #222
CAS-005 Question #222: Real Exam Question with Answer & Explanation
The correct answer is C: Implementing measured boot. Implementing measured boot ensures that the system’s firmware and boot process are verified for integrity before the OS is loaded. This prevents attacks that exploit firmware vulnerabilities or use rootkits, as any tampered components will be detected during the boot process. It
Question
A malicious actor exploited firmware vulnerabilities and used rootkits in an attack on an organization. After the organization recovered from the incident, an engineer needs to recommend a solution that reduces the likelihood of the same type of attack in the future. Which of the following is the most relevant solution?
Options
- AEnabling software integrity checks
- BInstalling self-encrypting drives
- CImplementing measured boot
- DConfiguring host-based encryption
Explanation
Implementing measured boot ensures that the system’s firmware and boot process are verified for integrity before the OS is loaded. This prevents attacks that exploit firmware vulnerabilities or use rootkits, as any tampered components will be detected during the boot process. It is a crucial step to mitigate this type of attack in the future.
Community Discussion
No community discussion yet for this question.