ExamTopics Logo
Mail Us[email protected]
Menu
Comptia Discussions
exam questions

Exam CAS-004 All Questions

View all questions & answers for the CAS-004 exam
Go to Exam

Exam CAS-004 topic 1 question 594 discussion

Actual exam question from CompTIA's CAS-004
Question #: 594
Topic #: 1
[All CAS-004 Questions]

Based on third-party software assurance assessments, a company needs to improve its quality and security practices. The common findings include:

• Deprecated functions
• Various race conditions
• Pointer dereferences
• Insecure system calls

Which of the following recommendations would most likely help the company reduce the frequency of these code quality issues?

  • A. Automated fuzzing and dynamic analysis
  • B. IDE-integrated static analysis
  • C. Third-party resource management
  • D. Two-person control process for code commits
  • E. Containerization of any included legacy code
Show Suggested Answer Hide Answer
Suggested Answer: B 🗳️
by Bright07 at Jan. 26, 2025, 1:46 a.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
Bright07
3 months ago
Selected Answer: B
The best recommendation to address the listed issues is: B. IDE-integrated static analysis. REASONS: Static Analysis Benefits: Deprecated Functions: Static analysis can detect deprecated functions during the development phase and recommend replacements. Race Conditions: While not always comprehensive, some static analysis tools can identify patterns that might lead to race conditions. Pointer Dereferences: Static analysis tools can identify potential null or unsafe pointer dereferences, highlighting issues before runtime. Insecure System Calls: Static analysis can flag the use of insecure system calls and suggest safer alternatives. IDE Integration: By integrating static analysis into the IDE, developers get immediate feedback during code writing, making it easier to fix issues early. This approach enforces consistent quality and security checks as part of the development process.
upvoted 2 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago