nerdexam
CompTIA

SY0-301 · Question #877

Which of the following is BEST at blocking attacks and providing security at layer 7 of the OSI model?

The correct answer is A. WAF. A Web Application Firewall (WAF) operates at Layer 7 (the Application layer) of the OSI model and inspects HTTP/HTTPS traffic to detect and block attacks such as SQL injection, cross-site scripting, and OWASP Top 10 threats. Routers (C) operate at Layer 3 (Network) and switches (

Security architecture

Question

Which of the following is BEST at blocking attacks and providing security at layer 7 of the OSI model?

Options

  • AWAF
  • BNIDS
  • CRouters
  • DSwitches

How the community answered

(30 responses)
  • A
    90% (27)
  • B
    7% (2)
  • C
    3% (1)

Explanation

A Web Application Firewall (WAF) operates at Layer 7 (the Application layer) of the OSI model and inspects HTTP/HTTPS traffic to detect and block attacks such as SQL injection, cross-site scripting, and OWASP Top 10 threats. Routers (C) operate at Layer 3 (Network) and switches (D) at Layer 2 (Data Link) - neither examines application-layer content. An NIDS (B) can detect malicious traffic but is typically passive and does not actively block attacks, making it less effective than a WAF for Layer 7 protection.

Topics

#WAF#web application firewall#OSI model#application layer

Community Discussion

No community discussion yet for this question.

Full SY0-301 Practice