CertNexus Certified Cyber Secure Coder (CSC) — Question 15

Which of the following is the GREATEST risk of having security information and event management (SIEM) collect computer names with older log entries?

Answer options

• A. There may be duplicate computer names on the network.
• B. The computer name may not be admissible evidence in court.
• C. Domain Name System (DNS) records may have changed since the log was created.
• D. There may be field name duplication when combining log files.

Correct answer: D

Explanation

The correct answer is D because when combining log files from different sources, if the same field names are used without proper differentiation, it can lead to confusion and data integrity issues. Options A, B, and C present potential concerns but do not directly relate to the risk of combining logs, which is specifically addressed by option D.