CompTIA CASP+ (CAS-004) — Question 287

A bank hired a security architect to improve its security measures against the latest threats. The solution must meet the following requirements:

• Recognize and block fake websites.
• Decrypt and scan encrypted traffic on standard and non-standard ports.
• Use multiple engines for detection and prevention.
• Have central reporting.

Which of the following is the BEST solution the security architect can propose?

Answer options

• A. CASB
• B. Web filtering
• C. NGFW
• D. EDR

Correct answer: C

Explanation

The best solution is NGFW (Next-Generation Firewall) because it is specifically designed to decrypt and inspect encrypted traffic, block phishing sites, and provide centralized logging and reporting. CASB focuses on cloud security, web filtering primarily manages web traffic without the same level of traffic inspection, and EDR is more focused on endpoint detection and response rather than network traffic analysis.