ExamTopics Logo
Mail Us[email protected]
Menu
Comptia Discussions
exam questions

Exam CAS-003 All Questions

View all questions & answers for the CAS-003 exam
Go to Exam

Exam CAS-003 topic 1 question 36 discussion

Actual exam question from CompTIA's CAS-003
Question #: 36
Topic #: 1
[All CAS-003 Questions]

A financial consulting firm recently recovered from some damaging incidents that were associated with malware installed via rootkit. Post-incident analysis is ongoing, and the incident responders and systems administrators are working to determine a strategy to reduce the risk of recurrence. The firm's systems are running modern operating systems and feature UEFI and TPMs. Which of the following technical options would provide the MOST preventive value?

  • A. Update and deploy GPOs
  • B. Configure and use measured boot
  • C. Strengthen the password complexity requirements
  • D. Update the antivirus software and definitions
Show Suggested Answer Hide Answer
Suggested Answer: B 🗳️
by tek at March 11, 2020, 4:15 a.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
tirajvid
1 year, 5 months ago
Selected Answer: B
There is no doubt. Best preventative measure from root kits is B. Configure and use measured boot
upvoted 1 times
...
vorozco
3 years, 4 months ago
Selected Answer: B
B. Configure and use measured boot
upvoted 2 times
...
anonymous0520
3 years, 7 months ago
A Measured Boot helps better protect your machine from rootkits and other malware. Measured Boot will check each start up component including the firmware all the way to the boot drivers and it will store this information in what is called a Trusted Platform Module (TPM).
upvoted 1 times
...
FireFerret
3 years, 7 months ago
Selected Answer: D
I'm almost leaning towards the given answer. The question says the systems are modern and have TPMs. Based on what Ive read on TPMs, (https://docs.microsoft.com/en-us/windows/security/information-protection/tpm/trusted-platform-module-overview) they sort of already have a function of ensuring proper boot code. I feel like it may be a trick question. Which would provide the MOST preventative value, which would be D because the antivirus would catch more than just measured boot would. I'm torn between answering the question and answering the comptia question.
upvoted 1 times
...
destro
3 years, 10 months ago
Root kit is the key word, measured boot is made partially to protect against root kits
upvoted 2 times
...
americaman80
4 years, 1 month ago
Measured Boot is a new feature of Windows 8 that was created to help better protect your machine from rootkits and other malware. Measured Boot will check each start up component including the firmware all the way to the boot drivers and it will store this information in what is called a Trusted Platform Module (TPM).
upvoted 1 times
...
Trap_D0_r
4 years, 4 months ago
B Measured boot would be the way to monitor for root kits in the future. "Measured Boot doesn’t make an implicit value judgement as to good or bad, and it doesn’t stop the platform from running, so Measured Boot can be much more liberal about what it checks." https://community.juniper.net/answers/blogs/elevate-member/2020/12/22/whats-the-difference-between-secure-boot-and-measured-boot
upvoted 2 times
...
NerdyMom4
4 years, 7 months ago
B.. should be the answer.
upvoted 2 times
...
boblee
4 years, 8 months ago
ANSR IS B
upvoted 4 times
...
tek
5 years, 3 months ago
B. Configure and use measured boot
upvoted 4 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel