CAS-005 · Question #456
CAS-005 Question #456: Real Exam Question with Answer & Explanation
The correct answer is B: DMARC. SPF (Sender Policy Framework): Validates the envelope sender (MAIL FROM) by checking that the sending IP is authorized in the domain’s SPF record, detecting forged return‑path addresses. DMARC (Domain-based Message Authentication, Reporting & Conformance): Builds on SPF (and DKIM
Question
A security administrator wants to detect a potential forged sender claim in the envelope of an email. Which of the following should the security administrator implement? (Choose two).
Options
- AMX record
- BDMARC
- CSPF
- DDNSSEC
- ES/MIME
- FTLS
Explanation
SPF (Sender Policy Framework): Validates the envelope sender (MAIL FROM) by checking that the sending IP is authorized in the domain’s SPF record, detecting forged return‑path addresses. DMARC (Domain-based Message Authentication, Reporting & Conformance): Builds on SPF (and DKIM) to enforce alignment between the authenticated envelope sender and the “From:” header, providing policy enforcement and reporting on any failures.
Community Discussion
No community discussion yet for this question.