CompTIA CASP+ (CAS-003) — Question 156

A company's user community is being adversely affected by various types of emails whose authenticity cannot be trusted. The Chief Information Security Officer
(CISO) must address the problem.
Which of the following solutions would BEST support trustworthy communication solutions?

Answer options

• A. Enabling spam filtering and DMARC.
• B. Using MFA when logging into email clients and the domain.
• C. Enforcing HTTPS everywhere so web traffic, including email, is secure.
• D. Enabling SPF and DKIM on company servers.
• E. Enforcing data classification labels before an email is sent to an outside party.

Correct answer: A

Explanation

Enabling spam filtering and DMARC (option A) is the best choice as it directly addresses the issue of email authenticity, helping to prevent spoofing and phishing attacks. While using MFA (option B) enhances login security, it does not specifically address email authenticity. Enforcing HTTPS (option C) secures web traffic but does not resolve issues related to email trustworthiness. Enabling SPF and DKIM (option D) is also beneficial but is less comprehensive than combining it with DMARC. Option E focuses on data security rather than email trust.