nerdexam
ExamsSY0-301Questions#847
CompTIA

SY0-301 · Question #847

SY0-301 Question #847: Real Exam Question with Answer & Explanation

The correct answer is B: Sandboxing. Sandboxing isolates an application into a restricted execution environment so that a compromise of that application cannot affect the broader system.

Question

Which of the following techniques describes the use of application isolation during execution to prevent system compromise if the application is compromised?

Options

  • ALeast privilege
  • BSandboxing
  • CBlack box
  • DApplication hardening

Explanation

Sandboxing isolates an application into a restricted execution environment so that a compromise of that application cannot affect the broader system.

Common mistakes.

  • A. Least privilege restricts the permissions granted to a user or process but does not create an isolated execution container to prevent lateral movement if the application is compromised.
  • C. Black box refers to a testing methodology where internal workings are unknown to the tester, not a technique for isolating application execution.
  • D. Application hardening reduces an application's attack surface through configuration and patching but does not create runtime isolation to contain a compromise.

Concept tested. Application sandboxing for execution isolation

Reference. https://learn.microsoft.com/en-us/windows/security/threat-protection/windows-sandbox/windows-sandbox-overview

Community Discussion

No community discussion yet for this question.

Sign up to join the discussion
Full SY0-301 Practice