ExamTopics Logo
Mail Us[email protected]
Menu
Comptia Discussions
exam questions

Exam CAS-003 All Questions

View all questions & answers for the CAS-003 exam
Go to Exam

Exam CAS-003 topic 1 question 215 discussion

Actual exam question from CompTIA's CAS-003
Question #: 215
Topic #: 1
[All CAS-003 Questions]

A software company is releasing a new mobile application to a broad set of external customers. Because the software company is rapidly releasing new features, it has built in an over-the-air software update process that can automatically update the application at launch time. Which of the following security controls should be recommended by the company's security architect to protect the integrity of the update process? (Choose two.)

  • A. Validate cryptographic signatures applied to software updates
  • B. Perform certificate pinning of the associated code signing key
  • C. Require HTTPS connections for downloads of software updates
  • D. Ensure there are multiple download mirrors for availability
  • E. Enforce a click-through process with user opt-in for new features
Show Suggested Answer Hide Answer
Suggested Answer: AB 🗳️
by JamesMcD123 at Sept. 4, 2021, 5:57 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
JamesMcD123
3 years, 9 months ago
C doesn't sound like a bad choice either. Are A/B just the BEST choices>?
upvoted 2 times
AB1938
3 years, 2 months ago
Yes, but keep in mind that enforcing HTTPS you're proposing "encryption" which is confidentiality in CIA triad and the question is purely focused on "integrity."
upvoted 1 times
...
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel