CompTIA CASP+ (CAS-003) — Question 313

A SaaS provider decides to offer data storage as a service. For simplicity, the company wants to make the service available over industry standard APIs, routable over the public Internet. Which of the following controls offers the MOST protection to the company and its customer's information?

Answer options

• A. Detailed application logging
• B. Use of non-standard ports
• C. Web application firewall
• D. Multifactor authentication

Correct answer: D

Explanation

Multifactor authentication (MFA) is the best option as it adds an extra layer of security by requiring multiple forms of verification before access is granted, making unauthorized access difficult. While a web application firewall can help protect against certain attacks, it does not address authentication directly. Detailed application logging is useful for monitoring but does not prevent access, and using non-standard ports offers limited security benefits as it can be easily bypassed.