CompTIA CASP+ (CAS-003) — Question 307
A security manager recently categorized an information system. During the categorization effort, the manager determined the loss of integrity of a specific information type would impact business significantly. Based on this, the security manager recommends the implementation of several solutions. Which of the following, when combined, would BEST mitigate this risk? (Choose two.)
Answer options
- A. Access control
- B. Whitelisting
- C. Signing
- D. Validation
- E. Boot attestation
Correct answer: C, D
Explanation
The correct answers, C (Signing) and D (Validation), are essential for ensuring data integrity by verifying that information has not been altered. While Access control (A) and Whitelisting (B) are important for security, they do not specifically address integrity concerns. Boot attestation (E) relates to the integrity of the boot process rather than the information itself.