CompTIA CAS-005 問題集

質問 1：
An organization purchased a new manufacturing facility and the security administrator needs to:
* Implement security monitoring.
* Protect any non-traditional device(s)/network(s).
* Ensure no downtime for critical systems.
Which of the following strategies best meets these requirements?
A. Applying updates and patches soon after they have been released
B. Configuring honeypots in the internal network to capture malicious activity
C. Analyzing system behavior and responding to any increase in activity
D. Observing the environment and proactively addressing any malicious activity
正解：D
解説: (Topexam メンバーにのみ表示されます)

質問 2：
An organization is planning for disaster recovery and continuity ofoperations, and has noted the following relevant findings:
1. A natural disaster may disrupt operations at Site A, which would then cause an evacuation. Users are unable to log into the domain from-their workstations after relocating to Site B.
2. A natural disaster may disrupt operations at Site A, which would then cause the pump room at Site B to become inoperable.
3. A natural disaster may disrupt operations at Site A, which would then cause unreliable internet connectivity at Site B due to route flapping.
INSTRUCTIONS
Match each relevant finding to the affected host by clicking on the host name and selecting the appropriate number.
For findings 1 and 2, select the items that should be replicated to Site B. For finding 3, select the item requiring configuration changes, then select the appropriate corrective action from the drop-down menu.


正解：
See the complete solution below in Explanation:
Explanation:
Matching Relevant Findings to the Affected Hosts:
Finding 1:
Affected Host: DNS
Reason: Users are unable to log into the domain from their workstations after relocating to Site B, which implies a failure in domain name services that are critical for user authentication and domain login.
Finding 2:
Affected Host: Pumps
Reason: Thepump room at Site B becoming inoperable directly points to the critical infrastructure components associated with pumping operations.
Finding 3:
Affected Host: VPN Concentrator
Reason: Unreliable internet connectivity at Site B due to route flapping indicates issues with network routing, which is often managed by VPN concentrators that handle site-to-site connectivity.
Corrective Actions for Finding 3:
Finding 3 Corrective Action:
Action: Modify the BGP configuration
Reason: Route flapping is often related to issues with Border Gateway Protocol (BGP) configurations.
Adjusting BGP settings can stabilize routes and improve internet connectivity reliability.
Replication to Site B for Finding 1:
Affected Host: DNS
Domain Name System (DNS) services are essential for translating domain names into IP addresses, allowing users to log into the network. Replicating DNS services ensures that even if Site A is disrupted, users at Site B can still authenticate and access necessary resources.
Replication to Site B for Finding 2:
Affected Host: Pumps
The operation of the pump room is crucial for maintaining various functions within the infrastructure.
Replicating the control systems and configurations for the pumps at Site B ensures that operations can continue smoothly even if Site A is affected.
Configuration Changes for Finding 3:
Affected Host: VPN Concentrator
Route flapping is a situation where routes become unstable, causing frequent changes in the best path for data to travel. This instability can be mitigated by modifying BGP configurations to ensure more stable routing.
VPN concentrators, which manage connections between sites, are typically configured with BGP for optimal routing.
References:
CompTIA Security+ Study Guide: This guide provides detailed information on disaster recovery and continuity of operations, emphasizing the importance of replicating critical services and making necessary configuration changes to ensure seamless operation during disruptions.
CompTIA Security+ Exam Objectives: These objectives highlight key areas in disaster recovery planning, including the replication of critical services and network configuration adjustments.
Disaster Recovery and Business Continuity Planning (DRBCP): This resource outlines best practices for ensuring that operations can continue at an alternate site during a disaster, including the replication of essential services and network stability measures.
By ensuring that critical services like DNS and control systems for pumps are replicated at the alternate site, and by addressing network routing issues through proper BGP configuration, the organization can maintain operational continuity and minimize the impact of natural disasters on their operations.

質問 3：
A company plans to implement a research facility with Intellectual property data that should be protected The following is the security diagram proposed by the security architect

Which of the following security architect models is illustrated by the diagram?
A. Perimeter protection security model
B. Identity and access management model
C. Zero Trust security model
D. Agent based security model
正解：C
解説: (Topexam メンバーにのみ表示されます)

質問 4：
Which of the following best describes the challenges associated with widespread adoption of homomorphic encryption techniques?
A. No use cases to drive adoption
B. Quantum computers not yetcapable
C. insufficient coprocessor support
D. Incomplete mathematical primitives
正解：C
解説: (Topexam メンバーにのみ表示されます)

質問 5：
A central bank implements strict risk mitigations for the hardware supply chain, including an allow list for specific countries of origin. Which of the following best describes the cyberthreat to the bank?
A. Physical Implants and tampering
B. Non-conformance to accepted manufacturing standards
C. Ability to obtain components during wartime
D. Fragility and other availability attacks
正解：A
解説: (Topexam メンバーにのみ表示されます)

質問 6：
A news organization wants to implement workflows that allow users to request that untruthful data be retraced and scrubbed from online publications to comply with the right to be forgotten Which of the following regulations is the organization most likely trying to address'
A. CCPA
B. COPPA
C. DORA
D. GDPR
正解：D
解説: (Topexam メンバーにのみ表示されます)

質問 7：
An external SaaS solution user reports a bug associated with the role-based access control module. This bug allows users to bypass system logic associated with client segmentation in the multitenant deployment model.
When assessing the bug report, the developer finds that the same bug was previously identified and addressed in an earlier release. The developer then determines the bug was reintroduced when an existing software component was integrated from a prior version of the platform. Which of the following is the best way to prevent this scenario?
A. Software composition analysis
B. Automated test and retest
C. Code signing
D. Regression testing
E. User acceptance testing
正解：D
解説: (Topexam メンバーにのみ表示されます)

質問 8：
A company lined an email service provider called my-email.com to deliver company emails. The company stalled having several issues during the migration. A security engineer is troubleshooting and observes the following configuration snippet:

Which of the following should the security engineer modify to fix the issue? (Select two).
A. The TXT record must be Changed to "v=dkim ip4:192.168.1.10 include:email-all"
B. The srv01 A record must be changed to a type CNAME record pointing to the web01 server
C. The email CNAME record must be changed to a type A record pointing to 192.168.111
D. The srvo1 A record must be changed to a type CNAME record pointing to the email server
E. The TXT record must be Changed to "v=dmarc ip4:192.168.1.10 include:my-email.com -all"
F. The TXT record must be changed to "v=dkim ip4:l92.168.1.11 include my-email.com -ell"
G. The email CNAMErecord must be changed to a type A record pointing to 192.168.1.10
正解：E,G
解説: (Topexam メンバーにのみ表示されます)