CAS-005 · Question #524
CAS-005 Question #524: Real Exam Question with Answer & Explanation
The correct answer is A: Configuring a unique API secret key for accounts. Configuring a unique API secret key for accounts ensures only authenticated users can access the API, reducing the attack surface while maintaining data integrity and availability. It also supports efficient resource use by restricting unauthorized access, aligning with the busin
Question
A threat intelligence company's business objective is to allow customers to integrate data directly to different TIPs through an API. The company would like to address as many of the following objectives as possible: - Reduce compute spend as much as possible. - Ensure availability for all users. - Reduce the potential attack surface. - Ensure the integrity of the data provided. Which of the following should the company consider to best meet the objectives?
Options
- AConfiguring a unique API secret key for accounts
- BPublishing a list of IOCs on a public directory
- CImplementing rate limiting for each registered user
- DProviding a hash of all data that is made available
Explanation
Configuring a unique API secret key for accounts ensures only authenticated users can access the API, reducing the attack surface while maintaining data integrity and availability. It also supports efficient resource use by restricting unauthorized access, aligning with the business
Community Discussion
No community discussion yet for this question.