Online Access Free CompTIA.CAS-004.v2024-05-02.q315 Practice Test (Page 55)

CAS-004 Exam Question 266

A developer is creating a new mobile application for a company. The application uses REST API and TLS 1.2 to communicate securely with the external back-end server. Due to this configuration, the company is concerned about HTTPS interception attacks.
Which of the following would be the BEST solution against this type of attack?

A.HSTS

B.Cookies

C.Certificate pinning

D.Wildcard certificates

CAS-004 Exam Question 267

A security architect is implementing a web application that uses a database back end. Prior to the production, the architect is concerned about the possibility of XSS attacks and wants to identify security controls that could be put in place to prevent these attacks.
Which of the following sources could the architect consult to address this security concern?

A.SDLC

B.OVAL

C.IEEE

D.OWASP

CAS-004 Exam Question 268

An organization is planning for disaster recovery and continuity of operations.
INSTRUCTIONS
Review the following scenarios and instructions. Match each relevant finding to the affected host.
After associating scenario 3 with the appropriate host(s), click the host to select the appropriate corrective action for that finding.
Each finding may be used more than once.
If at any time you would like to bring back the initial state of the simulation, please click the Reset All button.

CAS-004 Exam Question 269

A company publishes several APIs for customers and is required to use keys to segregate customer data sets.
Which of the following would be BEST to use to store customer keys?

A.A trusted platform module

B.A localized key store

C.A public key infrastructure

D.A hardware security module

CAS-004 Exam Question 270

A developer wants to maintain integrity to each module of a program and ensure the code cannot be altered by malicious users.
Which of the following would be BEST for the developer to perform? (Choose two.)

A.Utilize code signing by a trusted third party.

B.Implement certificate-based authentication.

C.Verify MD5 hashes.

D.Compress the program with a password.

E.Encrypt with 3DES.

F.Make the DACL read-only.

Correct Answer: A,F

Explanation
Utilizing code signing by a trusted third party and making the DACL (discretionary access control list) read-only are actions that the developer can perform to maintain integrity to each module of a program and ensure the code cannot be altered by malicious users. Code signing is a technique that uses digital signatures to verify the authenticity and integrity of code, preventing unauthorized modifications or tampering. A trusted third party, such as a certificate authority, can issue and validate digital certificates for code signing. A DACL is an attribute of an object that defines the permissions granted or denied to users or groups for accessing or modifying the object. Making the DACL read-only can prevent unauthorized users or groups from changing the permissions or accessing the code. Implementing certificate-based authentication is not an action that the developer can perform to maintain integrity to each module of a program and ensure the code cannot be altered by malicious users, but a method for verifying the identity of users or devices based on digital certificates, preventing unauthorized access or impersonation. Verifying MD5 hashes is not an action that the developer can perform to maintain integrity to each module of a program and ensure the code cannot be altered by malicious users, but a method for checking the integrity of files based on cryptographic hash functions, detecting accidental or intentional changes or corruption. Compressing the program with a password is not an action that the developer can perform to maintain integrity to each module of a program and ensure the code cannot be altered by malicious users, but a method for reducing the size of files and protecting them with a password, preventing unauthorized access or extraction. Encrypting with 3DES is not an action that the developer can perform to maintain integrity to each module of a program and ensure the code cannot be altered by malicious users, but a method for protecting the confidentiality of data based on symmetric-key encryption algorithms, preventing unauthorized disclosure or interception. Verified References:
https://www.comptia.org/blog/what-is-code-signing
https://partners.comptia.org/docs/default-source/resources/casp-content-guide

Other Version: 2882CompTIA.CAS-004.v2025-04-16.q409; 1282CompTIA.CAS-004.v2024-02-08.q162; 1619CompTIA.CAS-004.v2023-10-26.q155; 2445CompTIA.CAS-004.v2023-09-11.q196; 1487CompTIA.CAS-004.v2023-07-04.q118; 1644CompTIA.CAS-004.v2023-04-04.q100; 1434CompTIA.CAS-004.v2023-03-18.q82; 1379CompTIA.CAS-004.v2023-03-08.q83; 1684CompTIA.CAS-004.v2023-02-06.q91; 1184CompTIA.CAS-004.v2023-01-23.q73; 1411CompTIA.CAS-004.v2023-01-21.q71; 1366CompTIA.CAS-004.v2023-01-09.q75; 1753CompTIA.CAS-004.v2022-05-27.q44; 1554CompTIA.CAS-004.v2022-05-18.q62; 74CompTIA.Actual4dumps.CAS-004.v2022-04-25.by.norma.44q.pdf

Latest Upload: 174IIA.IIA-CIA-Part3.v2026-06-17.q220; 135WGU.Introduction-to-IT.v2026-06-17.q67; 189CompTIA.220-1202.v2026-06-16.q110; 126TheInstitutes.CPCU-500.v2026-06-16.q25; 200ACAMS.CAMS7-CN.v2026-06-16.q170; 204CBIC.CIC.v2026-06-15.q123; 138Peoplecert.ITIL-4-Specialist-High-velocity-IT.v2026-06-15.q16; 239HashiCorp.Terraform-Associate-004.v2026-06-15.q126; 142Peoplecert.ITILFNDv5.v2026-06-15.q26; 140Workday.Workday-Pro-HCM-Reporting.v2026-06-15.q28

CAS-004 Exam Question 266

CAS-004 Exam Question 267

CAS-004 Exam Question 268

CAS-004 Exam Question 269

CAS-004 Exam Question 270

Download PDF File