Which certification is the most popular and worthy to get? No doubt the CompTIA Advanced Security Practitioner CAS-001 CompTIA Advanced Security Practitioner exam is a worth challenging task but you should take among all the IT certifications . CertBus is providing the latest version of CompTIA Advanced Security Practitioner CAS-001 PDF and VCE dumps now. Comprehensive understanding on CAS-001 CompTIA Advanced Security Practitioner exam syllabus through CertBus 100% pass guarantee of the success on your CompTIA Advanced Security Practitioner CAS-001 CompTIA Advanced Security Practitioner exam taking.
We CertBus has our own expert team. They selected and published the latest CAS-001 preparation materials from CompTIA Official Exam-Center: http://www.certgod.com/CAS-001.html
QUESTION NO:15
Which of the following is true about an unauthenticated SAMLv2 transaction?
A. The browser asks the SP for a resource. The SP provides the browser with an XHTML format.
The browser asks the IdP to validate the user, and then provides the XHTML back to the SP for
access.
B. The browser asks the IdP for a resource. The IdP provides the browser with an XHTML format.
The browser asks the SP to validate the user, and then provides the XHTML to the IdP for access.
C. The browser asks the IdP to validate the user. The IdP sends an XHTML form to the SP and a cookie
to the browser. The browser asks for a resource to the SP, which verifies the cookie and XHTML
format for access.
D. The browser asks the SP to validate the user. The SP sends an XHTML form to the IdP. The IdP
provides the XHTML form back to the SP, and then the browser asks the SP for a resource.
Correct Answer: A
Section: (none)
Explanation
QUESTION NO:12
A security analyst at Company A has been trying to convince the Information Security Officer (ISO) to
allocate budget towards the purchase of a new intrusion prevention system (IPS) capable of analyzing
encrypted web transactions. Which of the following should the analyst provide to the ISO to support the
request? (Select TWO).
A. Emerging threat reports
B. Company attack tends
C. Request for Quote (RFQ)
D. Best practices
E. New technologies report
Correct Answer: AB
Section: (none)
Explanation
QUESTION NO:7
The security administrator at a bank is receiving numerous reports that customers are unable to login to the
bank website. Upon further investigation, the security administrator discovers that the name associated
with the bank website points to an unauthorized IP address. Which of the following solutions will MOST
likely mitigate this type of attack?
A. Security awareness and user training
B. Recursive DNS from the root servers
C. Configuring and deploying TSIG
D. Firewalls and IDS technologies
Correct Answer: C
Section: (none)
Explanation
QUESTION NO:2
Which of the following authentication types is used primarily to authenticate users through the use of
tickets?
A. LDAP
B. RADIUS
C. TACACS
D. Kerberos
Correct Answer: D
Section: (none)
Explanation
QUESTION NO:10
The internal auditor at Company ABC has completed the annual audit of the company\’s financial system.
The audit report indicates that the accounts receivable department has not followed proper record
disposal procedures during a COOP/BCP tabletop exercise involving manual processing of financial
transactions. Which of the following should be the Information Security Officer\’s (ISO\’s) recommenda-
tion? (Select TWO).
A. Wait for the external audit results
B. Perform another COOP exercise
C. Implement mandatory training
D. Destroy the financial transactions
E. Review company procedures
Correct Answer: CE
Section: (none)
Explanation
QUESTION NO:1
Which of the following attacks does Unicast Reverse Path Forwarding prevent?
A. Man in the Middle
B. ARP poisoning
C. Broadcast storm
D. IP Spoofing
Correct Answer: D
Section: (none)
Explanation
QUESTION NO:11
Company ABC has recently completed the connection of its network to a national high speed private re-
search network. Local businesses in the area are seeking sponsorship from Company ABC to connect to
the high speed research network by directly connecting through Company ABC\’s network. Company ABC\’s
Chief Information Officer (CIO) believes that this is an opportunity to increase revenues and visibility for
the company, as well as promote research and development in the area. Which of the following must
Company ABC require of its sponsored partners in order to document the technical security requirements
of the connection?
A. SLA
B. ISA
C. NDA
D. BPA
Correct Answer: B
Section: (none)
Explanation
QUESTION NO:9
A breach at a government agency resulted in the public release of top secret information. The Chief
Information Security Officer has tasked a group of security professionals to deploy a system which will
protect against such breaches in the future. Which of the following can the government agency deploy to
meet future security needs?
A. A DAC which enforces no read-up, a DAC which enforces no write-down, and a MAC which uses an
access matrix.
B. A MAC which enforces no write-up, a MAC which enforces no read-down, and a DAC which uses an
ACL.
C. A MAC which enforces no read-up, a MAC which enforces no write-down, and a DAC which uses an
access matrix.
D. A DAC which enforces no write-up, a DAC which enforces no read-down, and a MAC which uses an
ACL.
Correct Answer: C
Section: (none)
Explanation
QUESTION NO:14
A security audit has uncovered a lack of security controls with respect to employees\’ network account
management. Specifically, the audit reveals that employee\’s network accounts are not disabled in a timely
manner once an employee departs the organization. The company policy states that the network account
of an employee should be disabled within eight hours of termination. However, the audit shows that 5% of
the accounts were not terminated until three days after a dismissed employee departs. Furthermore, 2% of
the accounts are still active. Which of the following is the BEST course of action that the security officer
can take to avoid repeat audit findings?
A. Review the HR termination process and ask the software developers to review the identity
management code.
B. Enforce the company policy by conducting monthly account reviews of inactive accounts.
C. Review the termination policy with the company managers to ensure prompt reporting of employee
terminations.
D. Update the company policy to account for delays and unforeseen situations in account
Correct Answer: C
Section: (none)
Explanation
QUESTION NO:5
A company provides on-demand virtual computing for a sensitive project. The company implements a fully
virtualized datacenter and terminal server access with two-factor authentication for access to sensitive
data. The security administrator at the company has uncovered a breach in data confidentiality. Sensitive
data was found on a hidden directory within the hypervisor. Which of the following has MOST likely
occurred?
A. A stolen two factor token and a memory mapping RAM exploit were used to move data from one virtual
guest to an unauthorized similar token.
B. An employee with administrative access to the virtual guests was able to dump the guest memory onto
their mapped disk.
C. A host server was left un-patched and an attacker was able to use a VMEscape attack to gain
unauthorized access.
D. A virtual guest was left un-patched and an attacker was able to use a privilege escalation attack to gain
unauthorized access.
Correct Answer: C
Section: (none)
Explanation
CertBus exam braindumps are pass guaranteed. We guarantee your pass for the CAS-001 exam successfully with our CompTIA materials. CertBus CompTIA Advanced Security Practitioner exam PDF and VCE are the latest and most accurate. We have the best CompTIA in our team to make sure CertBus CompTIA Advanced Security Practitioner exam questions and answers are the most valid. CertBus exam CompTIA Advanced Security Practitioner exam dumps will help you to be the CompTIA specialist, clear your CAS-001 exam and get the final success.
CAS-001 Latest questions and answers on Google Drive(100% Free Download): https://drive.google.com/file/d/0B_3QX8HGRR1mUWZRUHd3UVllVjA/view?usp=sharing
CAS-001 CompTIA exam dumps (100% Pass Guaranteed) from CertBus: http://www.certgod.com/CAS-001.html [100% Exam Pass Guaranteed]
Why select/choose CertBus?
Millions of interested professionals can touch the destination of success in exams by certgod.com. products which would be available, affordable, updated and of really best quality to overcome the difficulties of any course outlines. Questions and Answers material is updated in highly outclass manner on regular basis and material is released periodically and is available in testing centers with whom we are maintaining our relationship to get latest material.