Check Point Certified Security Expert (CCSE) R81 — Question 257
Vanessa is expecting a very important Security Report. The Document should be sent as an attachment via e-mail. An e-mail with Security_report.pdf file was delivered to her e-mail inbox. When she opened the PDF file, she noticed that the file is basically empty and only few lines of text are in it. The report is missing some graphs, tables and links. Which component of SandBlast protection is her company using on a Gateway?
Answer options
- A. SandBlast Agent
- B. SandBlast Threat Extraction
- C. Check Point Protect
- D. SandBlast Threat Emulation
Correct answer: B
Explanation
The correct answer is B, SandBlast Threat Extraction, as this feature removes potentially harmful content from documents while preserving the essential information, which explains the missing elements in the PDF. The other options, such as SandBlast Agent and SandBlast Threat Emulation, serve different functions related to endpoint protection and malware analysis, respectively, and do not specifically address the issue of content removal from documents.