PassLeader released the NEWEST CompTIA CAS-002 exam dumps recently! Both CAS-002 VCE dumps and CAS-002 PDF dumps are available on PassLeader, either CAS-002 VCE dumps or CAS-002 PDF dumps have the NEWEST CAS-002 exam questions in it, they will help you passing CompTIA CAS-002 exam easily! You can download the valid CAS-002 dumps VCE and PDF from PassLeader here: https://www.passleader.com/cas-002.html (900 Q&As Dumps)
Also, previewing the NEWEST PassLeader CAS-002 dumps online for free on Google Drive: https://drive.google.com/open?id=0B-ob6L_QjGLpenQtV3dLMDkyM0U
QUESTION 626
A penetration tester is assessing a mobile banking application. Man-in-the-middle attempts via a HTTP intercepting proxy are failing with SSL errors. Which of the following controls has likely been implemented by the developers?
A.   SSL certificate revocation
B.   SSL certificate pinning
C.   Mobile device root-kit detection
D.   Extended Validation certificates
Answer: B
QUESTION 627
A security administrator notices a recent increase in workstations becoming compromised by malware. Often, the malware is delivered via drive-by downloads, from malware hosting websites, and is not being detected by the corporate antivirus. Which of the following solutions would provide the BEST protection for the company?
A.   Increase the frequency of antivirus downloads and install updates to all workstations.
B.   Deploy a cloud-based content filter and enable the appropriate category to prevent further infections.
C.   Deploy a NIPS to inspect and block all web traffic which may contain malware and exploits.
D.   Deploy a web based gateway antivirus server to intercept viruses before they enter the network.
Answer: B
QUESTION 628
A Chief Information Security Officer (CISO) is approached by a business unit manager who heard a report on the radio this morning about an employee at a competing firm who shipped a VPN token overseas so a fake employee could log into the corporate VPN. The CISO asks what can be done to mitigate the risk of such an incident occurring within the organization. Which of the following is the MOST cost effective way to mitigate such a risk?
A.   Require hardware tokens to be replaced on a yearly basis.
B.   Implement a biometric factor into the token response process.
C.   Force passwords to be changed every 90 days.
D.   Use PKI certificates as part of the VPN authentication process.
Answer: B
QUESTION 629
The security administrator at a bank is receiving numerous reports that customers are unable to login to the bank website. Upon further investigation, the security administrator discovers that the name associated with the bank website points to an unauthorized IP address. Which of the following solutions will MOST likely mitigate this type of attack?
A.   Security awareness and user training
B.   Recursive DNS from the root servers
C.   Configuring and deploying TSIG
D.   Firewalls and IDS technologies
Answer: C
QUESTION 630
A breach at a government agency resulted in the public release of top secret information. The Chief Information Security Officer has tasked a group of security professionals to deploy a system which will protect against such breaches in the future. Which of the following can the government agency deploy to meet future security needs?
A.   A DAC which enforces no read-up, a DAC which enforces no write-down, and a MAC which uses an access matrix.
B.   A MAC which enforces no write-up, a MAC which enforces no read-down, and a DAC which uses an ACL.
C.   A MAC which enforces no read-up, a MAC which enforces no write-down, and a DAC which uses an access matrix.
D.   A DAC which enforces no write-up, a DAC which enforces no read-down, and a MAC which uses an ACL.
Answer: C
Welcome to choose PassLeader CAS-002 dumps for 100% passing CompTIA CAS-002 exam: https://www.passleader.com/cas-002.html (900 Q&As VCE Dumps and PDF Dumps)
Also, previewing the NEWEST PassLeader CAS-002 dumps online for free on Google Drive: https://drive.google.com/open?id=0B-ob6L_QjGLpenQtV3dLMDkyM0U