Free CompTIA SecurityX Certification Exam CAS-005 Exam Practice Test

Which of the following is the main reason quantum computing advancements are leading companies and countries to deploy new encryption algorithms?Encryption systems based on large prime numbers will be vulnerable to exploitationZero Trust security architectures will require homomorphic encryption.Perfect forward secrecy will prevent deployment of advanced firewall monitoring techniquesQuantum computers will enable malicious actors to capture IP traffic in real time

• Quantum computers have the potential to solve these problems exponentially faster than classical computers, making current cryptographic systems vulnerable.
• Why Large Prime Numbers are Vulnerable:
• Shor's Algorithm: Quantum computers can use Shor's algorithm to factorize large integers efficiently, which undermines the security of RSA encryption.
• Cryptographic Breakthrough: The ability to quickly factor large prime numbers means that encrypted data, which relies on the hardness of this mathematical problem, can be decrypted.
• Other options, while relevant, do not capture the primary reason for the shift towards new encryption algorithms:
• B . Zero Trust security architectures: While important, the shift to homomorphic encryption is not the main driver for new encryption algorithms.
• C . Perfect forward secrecy: It enhances security but is not the main reason for new encryption algorithms.
• D . Real-time IP traffic capture: Quantum computers pose a more significant threat to the underlying cryptographic algorithms than to the real-time capture of traffic.

A company updates its cloud-based services by saving infrastructure code in a remote repository. The code is automatically deployed into the development environment every time the code is saved lo the repository The developers express concern that the deployment often fails, citing minor code issues and occasional security control check failures in the development environment Which of the following should a security engineer recommend to reduce the deployment failures? (Select two).

• Software composition analysis
• Pre-commit code linting
• Repository branch protection
• Automated regression testing
• Code submit authorization workflow
• Pipeline compliance scanning

An incident response team is analyzing malware and observes the following:Does not execute in a sandboxNo network loCsNo publicly known hash matchNo process injection method detectedWhich of the following should the team do next to proceed with further analysis?

• Use an online vims analysis tool to analyze the sample
• Check for an anti-virtualization code in the sample
• Utilize a new deployed machine to run the sample.
• Search oilier internal sources for a new sample.

An organization is looking for gaps in its detection capabilities based on the APTs that may target the industry Which of the following should the security analyst use to perform threat modeling?

• ATT&CK
• OWASP
• CAPEC
• STRIDE

During a gap assessment, an organization notes that OYOD usage is a significant risk. The organization implemented administrative policies prohibiting BYOD usage However, the organization has not implemented technical controls to prevent the unauthorized use of BYOD assets when accessing the organization's resources. Which of the following solutions should the organization implement to b»« reduce the risk of OYOD devices? (Select two).

• Cloud 1AM to enforce the use of token based MFA
• Conditional access, to enforce user-to-device binding
• NAC, to enforce device configuration requirements
• PAM. to enforce local password policies
• SD-WAN. to enforce web content filtering through external proxies
• DLP, to enforce data protection capabilities

A systems administrator works with engineers to process and address vulnerabilities as a result of continuous scanning activities. The primary challenge faced by the administrator is differentiating between valid and invalid findings. Which of the following would the systems administrator most likely verify is properly configured?

• Report retention time
• Scanning credentials
• Exploit definitions
• Testing cadence

The material finding from a recent compliance audit indicate a company has an issue with excessive permissions. The findings show that employees changing roles or departments results in privilege creep. Which of the following solutions are the best ways to mitigate this issue? (Select two).Setting different access controls defined by business area

• Implementing a role-based access policy
• Designing a least-needed privilege policy
• Establishing a mandatory vacation policy
• Performing periodic access reviews
• Requiring periodic job rotation

A security operations engineer needs to prevent inadvertent data disclosure when encrypted SSDs are reused within an enterprise. Which of the following is the most secure way to achieve this goal?

• Executing a script that deletes and overwrites all data on the SSD three times
• Wiping the SSD through degaussing
• Securely deleting the encryption keys used by the SSD
• Writing non-zero, random data to all cells of the SSD

While reviewing recent modem reports, a security officer discovers that several employees were contacted by the same individual who impersonated a recruiter. Which of the following best describes this type of correlation?

• Spear-phishing campaign
• Threat modeling
• Red team assessment
• Attack pattern analysis

A security architect for a global organization with a distributed workforce recently received funding lo deploy a CASB solution Which of the following most likely explains the choice to use a proxy-based CASB?

• The capability to block unapproved applications and services is possible
• Privacy compliance obligations are bypassed when using a user-based deployment.
• Protecting and regularly rotating API secret keys requires a significant time commitment
• Corporate devices cannot receive certificates when not connected to on-premises devices