FULL D488 - Cybersecurity Architecture and
Engineering (CASP+)900+COMPLETE
QUESTIONS & ANSWERS 2024/25 UPDATED &
RATED A+/ALREADY GRADED A+
An IT security team has been notified that external contractors are using their personal laptops to gain access to the corporate
network. The team needs to recommend a solution that will prevent unapproved devices from accessing the network.
Which solution fulfills these requirements?
A) Implementing a demilitarized zone (DMZ)
B) Installing a hardware security module
C) Implementing port security
D) Deploying a software firewall
C) Implementing port security
What describes a suite of policies and technology tools designed to enable centralized management and control of mobile devices
in a corporate setting?
A. MDM (Mobile Device Management)
B. EMM (Enterprise Mobility Management)
C. MFA (Multifactor Authentication)
D. RTOS (Real-Time Operating System)
B. EMM (Enterprise Mobility Management)
Which subset of EMM (Enterprise Mobility Management) focuses on controlling mobile devices to ensure compliance with an
organization's security requirements?
A. RTOS (Real-Time Operating System)
B. EMM (Enterprise Mobility Management)
C. MDM (Mobile Device Management)
D. MFA (Multifactor Authentication)
C. MDM (Mobile Device Management)
,What authentication method can protect access to corporate resources from a managed device and is used during device
enrollment to prevent unauthorized access?
A. MDM (Mobile Device Management)
B. EMM (Enterprise Mobility Management)
C. MFA (Multifactor Authentication)
D. RTOS (Real-Time Operating System)
C. MFA (Multifactor Authentication)
Which system is designed for time-sensitive embedded controllers, such as those required for radio-based connectivity?
A. RTOS (Real-Time Operating System)
B. EMM (Enterprise Mobility Management)
C. MDM (Mobile Device Management)
D. MFA (Multifactor Authentication)
A. RTOS (Real-Time Operating System)
Which solution provides centralized management and security for mobile devices across an organization, encompassing a wide
range of policies and tools?
A. EMM (Enterprise Mobility Management)
B. MDM (Mobile Device Management)
C. MFA (Multifactor Authentication)
D. RTOS (Real-Time Operating System)
A. EMM (Enterprise Mobility Management)
A security designer is creating solutions for point-of-sale (PoS) machines. Which widely-used technology should the security
designer consider for contactless payments?
,A. SAE (Simultaneous Authentication of Equals)
B. Bluetooth
C. NFC (Near Field Communication)
D. GCMP (Galois Counter Mode Protocol)
C. NFC (Near Field Communication)
Which technology is widely used for making payments via contactless point-of-sale (PoS) machines?
A. SAE (Simultaneous Authentication of Equals)
B. Bluetooth
C. NFC (Near Field Communication)
D. GCMP (Galois Counter Mode Protocol)
C. NFC (Near Field Communication)
What technology, used in WPA3, replaces WPA's 4-way handshake authentication and association mechanism with a protocol
based on the Diffie-Hellman key agreement?
A. NFC (Near Field Communication)
B. SAE (Simultaneous Authentication of Equals)
C. Bluetooth
D. GCMP (Galois Counter Mode Protocol)
B. SAE (Simultaneous Authentication of Equals)
The chief technology officer for a small publishing company has been tasked with improving the company's security posture. As part
of a network upgrade, the company has decided to implement intrusion detection, spam filtering, content filtering, and antivirus
controls. The project needs to be completed using the least amount of infrastructure while meeting all requirements.
Which solution fulfills these requirements?
A) Deploying an anti-spam gateway
B) Deploying a proxy server
C) Deploying a unified threat management (UTM) appliance
, D) Deploying a web application firewall (WAF)
C) Deploying a unified threat management (UTM) appliance
The security team plans to deploy an intrusion detection system (IDS) solution to alert engineers about inbound threats. The team
already has a database of signatures that they want the IDS solution to validate.
Which detection technique meets the requirements?
A) Intrusion detection
B) Deep packet inspection
C) Signature-based detection
D) Intrusion prevention
C) Signature-based detection
An IT organization had a security breach after deploying an update to its production web servers. The application currently goes
through a manual update process a few times per year. The security team needs to recommend a failback option for future
deployments.
Which solution fulfills these requirements?
A) Implementing a code scanner
B) Implementing code signing
C) Implementing versioning
D) Implementing a security requirements traceability matrix (SRTM)
C) Implementing versioning
A software development team is working on a new mobile application that will be used by customers. The security team must
ensure that builds of the application will be trusted by a variety of mobile devices.
Which solution fulfills these requirements?
Engineering (CASP+)900+COMPLETE
QUESTIONS & ANSWERS 2024/25 UPDATED &
RATED A+/ALREADY GRADED A+
An IT security team has been notified that external contractors are using their personal laptops to gain access to the corporate
network. The team needs to recommend a solution that will prevent unapproved devices from accessing the network.
Which solution fulfills these requirements?
A) Implementing a demilitarized zone (DMZ)
B) Installing a hardware security module
C) Implementing port security
D) Deploying a software firewall
C) Implementing port security
What describes a suite of policies and technology tools designed to enable centralized management and control of mobile devices
in a corporate setting?
A. MDM (Mobile Device Management)
B. EMM (Enterprise Mobility Management)
C. MFA (Multifactor Authentication)
D. RTOS (Real-Time Operating System)
B. EMM (Enterprise Mobility Management)
Which subset of EMM (Enterprise Mobility Management) focuses on controlling mobile devices to ensure compliance with an
organization's security requirements?
A. RTOS (Real-Time Operating System)
B. EMM (Enterprise Mobility Management)
C. MDM (Mobile Device Management)
D. MFA (Multifactor Authentication)
C. MDM (Mobile Device Management)
,What authentication method can protect access to corporate resources from a managed device and is used during device
enrollment to prevent unauthorized access?
A. MDM (Mobile Device Management)
B. EMM (Enterprise Mobility Management)
C. MFA (Multifactor Authentication)
D. RTOS (Real-Time Operating System)
C. MFA (Multifactor Authentication)
Which system is designed for time-sensitive embedded controllers, such as those required for radio-based connectivity?
A. RTOS (Real-Time Operating System)
B. EMM (Enterprise Mobility Management)
C. MDM (Mobile Device Management)
D. MFA (Multifactor Authentication)
A. RTOS (Real-Time Operating System)
Which solution provides centralized management and security for mobile devices across an organization, encompassing a wide
range of policies and tools?
A. EMM (Enterprise Mobility Management)
B. MDM (Mobile Device Management)
C. MFA (Multifactor Authentication)
D. RTOS (Real-Time Operating System)
A. EMM (Enterprise Mobility Management)
A security designer is creating solutions for point-of-sale (PoS) machines. Which widely-used technology should the security
designer consider for contactless payments?
,A. SAE (Simultaneous Authentication of Equals)
B. Bluetooth
C. NFC (Near Field Communication)
D. GCMP (Galois Counter Mode Protocol)
C. NFC (Near Field Communication)
Which technology is widely used for making payments via contactless point-of-sale (PoS) machines?
A. SAE (Simultaneous Authentication of Equals)
B. Bluetooth
C. NFC (Near Field Communication)
D. GCMP (Galois Counter Mode Protocol)
C. NFC (Near Field Communication)
What technology, used in WPA3, replaces WPA's 4-way handshake authentication and association mechanism with a protocol
based on the Diffie-Hellman key agreement?
A. NFC (Near Field Communication)
B. SAE (Simultaneous Authentication of Equals)
C. Bluetooth
D. GCMP (Galois Counter Mode Protocol)
B. SAE (Simultaneous Authentication of Equals)
The chief technology officer for a small publishing company has been tasked with improving the company's security posture. As part
of a network upgrade, the company has decided to implement intrusion detection, spam filtering, content filtering, and antivirus
controls. The project needs to be completed using the least amount of infrastructure while meeting all requirements.
Which solution fulfills these requirements?
A) Deploying an anti-spam gateway
B) Deploying a proxy server
C) Deploying a unified threat management (UTM) appliance
, D) Deploying a web application firewall (WAF)
C) Deploying a unified threat management (UTM) appliance
The security team plans to deploy an intrusion detection system (IDS) solution to alert engineers about inbound threats. The team
already has a database of signatures that they want the IDS solution to validate.
Which detection technique meets the requirements?
A) Intrusion detection
B) Deep packet inspection
C) Signature-based detection
D) Intrusion prevention
C) Signature-based detection
An IT organization had a security breach after deploying an update to its production web servers. The application currently goes
through a manual update process a few times per year. The security team needs to recommend a failback option for future
deployments.
Which solution fulfills these requirements?
A) Implementing a code scanner
B) Implementing code signing
C) Implementing versioning
D) Implementing a security requirements traceability matrix (SRTM)
C) Implementing versioning
A software development team is working on a new mobile application that will be used by customers. The security team must
ensure that builds of the application will be trusted by a variety of mobile devices.
Which solution fulfills these requirements?
