CompTIA CASP+ (CAS-003) — Question 187

A security engineer is attempting to increase the randomness of numbers used in key generation in a system. The goal of the effort is to strengthen the keys against predictive analysis attacks.
Which of the following is the BEST solution?

Answer options

• A. Use an entropy-as-a-service vendor to leverage larger entropy pools.
• B. Loop multiple pseudo-random number generators in a series to produce larger numbers.
• C. Increase key length by two orders of magnitude to detect brute forcing.
• D. Shift key generation algorithms to ECC algorithms.

Correct answer: A

Explanation

The correct answer is A because using an entropy-as-a-service vendor provides access to a larger and more unpredictable source of entropy, significantly enhancing randomness. Options B and D do not directly address the randomness of key generation effectively, while option C, although it increases security, does not improve the randomness itself.