CompTIA CAS-003 - CompTIA Advanced Security Practitioner (CASP) CAS-003 Exam
Page: 1 / 96
Total 480 questions
Question #1 (Topic: Single Topic)
DRAG DROP
Drag and drop the cloud deployment model to the associated use-case scenario. Options may be used only once or not at all.
Select and Place:
Drag and drop the cloud deployment model to the associated use-case scenario. Options may be used only once or not at all.
Select and Place:
Answer: 
Question #2 (Topic: Single Topic)
DRAG DROP
A security consultant is considering authentication options for a financial institution. The following authentication options are available. Drag and drop the security
mechanism to the appropriate use case. Options may be used once.
Select and Place:
A security consultant is considering authentication options for a financial institution. The following authentication options are available. Drag and drop the security
mechanism to the appropriate use case. Options may be used once.
Select and Place:
Answer: 
Question #3 (Topic: Single Topic)
A company's Chief Operating Officer (COO) is concerned about the potential for competitors to infer proprietary information gathered from employees' social
media accounts.
Which of the following methods should the company use to gauge its own
social media threat level without targeting individual employees?
media accounts.
Which of the following methods should the company use to gauge its own
social media threat level without targeting individual employees?
A. Utilize insider threat consultants to provide expertise.
B. Require that employees divulge social media accounts.
C. Leverage Big Data analytical algorithms.
D. Perform social engineering tests to evaluate employee awareness.
Answer: A
Question #4 (Topic: Single Topic)
DRAG DROP
A security administrator must configure the database server shown below to comply with the four requirements listed. Drag and drop the appropriate ACL that
should be configured on the database server to its corresponding requirement. Answer options may be used once or not at all.
Select and Place:
A security administrator must configure the database server shown below to comply with the four requirements listed. Drag and drop the appropriate ACL that
should be configured on the database server to its corresponding requirement. Answer options may be used once or not at all.
Select and Place:
Answer: 
Question #5 (Topic: Single Topic)
A security administrator is hardening a TrustedSolaris server that processes sensitive data. The data owner has established the following security requirements:
✑ The data is for internal consumption only and shall not be distributed to outside individuals
✑ The systems administrator should not have access to the data processed by the server
✑ The integrity of the kernel image is maintained
Which of the following host-based security controls BEST enforce the data owner's requirements? (Choose three.)
✑ The data is for internal consumption only and shall not be distributed to outside individuals
✑ The systems administrator should not have access to the data processed by the server
✑ The integrity of the kernel image is maintained
Which of the following host-based security controls BEST enforce the data owner's requirements? (Choose three.)
A. SELinux
B. DLP
C. HIDS
D. Host-based firewall
E. Measured boot
F. Data encryption
G. Watermarking
Answer: CEF
