Check Point Certified Security Administrator (CCSA) R80 — Question 107

What is the mechanism behind Threat Extraction?

Answer options

• A. This is a new mechanism which extracts malicious files from a document to use it as a counter-attack against its sender
• B. This is a new mechanism which is able to collect malicious files out of any kind of file types to destroy it prior to sending it to the intended recipient
• C. This is a new mechanism to identify the IP address of the sender of malicious codes and to put it into the SAM database (Suspicious Activity Monitoring).
• D. Any active contents of a document, such as JavaScripts, macros and links will be removed from the document and forwarded to the intended recipient, which makes this solution very fast

Correct answer: D

Explanation

The correct answer, D, accurately describes Threat Extraction's function of removing potentially harmful active content before delivering the document. Options A and B incorrectly imply that the mechanism is focused on counter-attacks or destruction of files rather than safe delivery. Option C is unrelated as it addresses IP tracking rather than content extraction.