Exam CS0-002 topic 1 question 158 discussion

Definition: Anti-Tamper is the systems engineering activities intended to deter and/or delay exploitation of critical technologies in a system in order to impede countermeasure development, unintended technology transfer, or alteration of a system. Guys change management is a process to get changes approved by management before implementing changes. It is not a software that is deployed on a system to detect unauthorized changes. This is also referring to a 3rd party company which likely wouldnt be involved in the companys change management process. Its a third part company that wants to know if someone is tampering/making changes to their device.

Key part "The company deployed a software process to manage unauthorized changes to the appliance, log them, and forward them to a central repository for evaluation" change management - process through which changes to the configuration of information systems are monitored and controlled. Each individual component should have a separate document or database record that describes its initial state and subsequent changes Anti-Tamper o Methods that make it difficult for an attacker to alter the authorized execution of software o Anti-tamper mechanisms include a field programmable gate array (FPGA) and a physically unclonable function (PUF)

C. Anti-tamper

CompTIA is known for mixing issues to create confusion. Change management does not prevent disruption, therefore, the response sought is anti-tamper.

The process described aligns with the principles of change management, and it is a measure to ensure that unauthorized changes to the hardware security appliance are detected and addressed. Therefore, the most appropriate answer is: D. Change management In this context, the company is managing changes to the appliance's configuration by deploying a software process to detect and log unauthorized changes, forwarding them to a central repository for evaluation. This process is in line with change management practices, which involve controlling and monitoring changes to maintain the integrity and security of a system. While "anti-tamper" (Option C) could also be a valid term, in the context of IT and security, processes that prevent or detect unauthorized changes are often considered part of change management practices. - GPT

Anti-tamper measures are designed to detect and prevent unauthorized changes or tampering with a system or device.

How Anti-tampering will limit internal unauthorized changes.? change management ensure its authorized before its processed.

The company has implemented a software process to manage unauthorized changes to the appliance, log them, and forward them to a central repository for evaluation. This process is designed to detect and prevent any tampering or unauthorized modifications to the appliance's configuration. Anti-tamper measures are commonly employed to protect the integrity and security of hardware devices, ensuring that they remain in their intended state

Key here is "for evaluation".

It is asking for the process not the actual fix of the issue.

Anti-tamper protection comes in many varieties from mechanical means like anti-tamper screws and holographic stickers to electronic detection methods. Tamper-proofing microprocessors often takes the form of encasing electronics or otherwise securing them, while attackers use techniques like physically probing or modifying them, freezing devices, and applying out-of-spec power or signals.

I originally wanted to pick anti-tamper but it specifically asked for a "process". I'm going with D.

its change management - D

I get anti tamper, but would that not stop the tampering. This is software that is recording unauthorized alterations, thus the changes are being made. This really looks like D to me. If you are going to use anti-tamper then why let the tampering occur and simply record it? From a .gov site, Anti-tamper is defined as, Systems engineering activities intended to deter and/or delay exploitation of critical technologies in a U.S. defense system in order to impede countermeasure development, unintended technology transfer, or alteration of a system. I still don't see that as what is happening here. Going D I guess.

Anti tamper. Google it, same as question

The change request management process in systems engineering is the process of requesting, determining attainability, planning, implementing, and evaluating of changes to a system. Its main goals are to support the processing and traceability of changes to an interconnected set of factors.

going with D only because it says process , and I think anti tamper is not a process