CompTIA CASP+ (CAS-004) — Question 305

The Chief Executive Officer of an online retailer notices a sudden drop in sales. A security analyst at the retailer detects a redirection of unsecure web traffic to a competitor’s site. Which of the following would best prevent this type of attack?

Answer options

• A. Enabling HSTS
• B. Configuring certificate pinning
• C. Enforcing DNSSEC
• D. Deploying certificate stapling

Correct answer: A

Explanation

Enabling HSTS (HTTP Strict Transport Security) ensures that browsers only connect to the website using HTTPS, effectively preventing HTTP downgrade attacks and redirection to unsecured sites. The other options, while important for security, do not specifically address the redirection of insecure web traffic like HSTS does.