ExamTopics Logo
Mail Us[email protected]
Menu
Comptia Discussions
exam questions

Exam CAS-004 All Questions

View all questions & answers for the CAS-004 exam
Go to Exam

Exam CAS-004 topic 1 question 358 discussion

Actual exam question from CompTIA's CAS-004
Question #: 358
Topic #: 1
[All CAS-004 Questions]

A security officer is requiring all personnel working on a special project to obtain a security clearance requisite with the level of all information being accessed. Data on this network must be protected at the same level of each clearance holder. The need to know must be verified by the data owner. Which of the following should the security officer do to meet these requirements?

  • A. Create a rule to authorize personnel only from certain IPs to access the files.
  • B. Assign labels to the files and require formal access authorization.
  • C. Assign attributes to each file and allow authorized users to share the files.
  • D. Assign roles to users and authorize access to files based on the roles.
Show Suggested Answer Hide Answer
Suggested Answer: B 🗳️
by CXSSP at Sept. 25, 2023, 3:54 a.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
talosDevbot
1 year ago
Selected Answer: B
Mandatory Access Control (MAC) is required to meet these requirements. B is the correct answer
upvoted 1 times
...
OdinAtlasSteel
1 year, 2 months ago
Selected Answer: B
B. Assign labels to the files and require formal access authorization. Assigning labels to files allows for the classification of data based on sensitivity or security clearance levels. By requiring formal access authorization, the security officer ensures that only individuals with the appropriate clearance level can access the files. This aligns with the principle of "need to know," as access is granted based on the user's clearance level and authorization.
upvoted 1 times
...
weaponxcel
1 year, 2 months ago
Selected Answer: B
B. Assign labels to the files and require formal access authorization. Labels are a way to classify data according to its sensitivity level. Formal access authorization is the process of granting users access to data based on their security clearance and need to know.
upvoted 1 times
...
CXSSP
1 year, 3 months ago
Selected Answer: B
B. Assign labels to the files and require formal access authorization. This option aligns with the principle of using security clearances and a "need to know" basis to control access to sensitive information. By labeling files and requiring formal access authorization, the security officer can ensure that only personnel with the appropriate clearance level and a legitimate need to access the data are granted permission. This approach helps maintain the confidentiality and security of the information.
upvoted 2 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel