CompTIA CASP+ (CAS-004) — Question 39

Clients are reporting slowness when attempting to access a series of load-balanced APIs that do not require authentication. The servers that host the APIs are showing heavy CPU utilization. No alerts are found on the WAFs sitting in front of the APIs.
Which of the following should a security engineer recommend to BEST remedy the performance issues in a timely manner?

Answer options

• A. Implement rate limiting on the API.
• B. Implement geoblocking on the WAF.
• C. Implement OAuth 2.0 on the API.
• D. Implement input validation on the API.

Correct answer: A

Explanation

Implementing rate limiting on the API is the most effective solution as it can control the number of requests made to the servers, thereby reducing CPU load and improving performance. The other options, such as geoblocking, OAuth 2.0, and input validation, do not directly address the immediate issue of high CPU utilization caused by excessive requests.