SY0-501 Question #324: Real Exam Question with Answer & Explanation

Question

A global gaming console manufacturer is launching a new gaming platform to its customers. Which of the following controls reduces the risk created by malicious gaming customers attempting to circumvent control by way of modifying consoles?

Options

• AFirmware version control
• BManual software upgrades
• CVulnerability scanning
• DAutomatic updates
• ENetwork segmentation
• FApplication firewalls

Explanation

These controls mitigate the risk of malicious customers modifying gaming consoles by enforcing the use of authorized software/firmware and automatically applying security updates to counteract circumvention attempts.

Common mistakes.

• B. Manual software upgrades rely on user action and could delay the application of critical security patches, potentially increasing the window for exploitation rather than reducing risk from modification.
• C. Vulnerability scanning identifies weaknesses in systems or applications but does not directly prevent customers from modifying their consoles post-purchase to circumvent controls.
• E. Network segmentation organizes network traffic and enhances security within the manufacturer's infrastructure or online services, but it does not prevent a customer from physically or logically modifying their individual console.
• F. Application firewalls protect backend services from malicious traffic; they do not prevent or detect unauthorized physical or software modifications made by a customer to their local console.

Concept tested. Device integrity and anti-tampering controls

Reference. https://learn.microsoft.com/en-us/windows/security/information-protection/device-integrity

No community discussion yet for this question.