CompTIA CASP+ (CAS-004) — Question 395

A security engineer is assessing a new tool to segment data and communications between domains. The assessment must determine how data transmission controls can be bypassed without detection. Which of the following techniques should the security engineer use?

Answer options

• A. Machine-learning statistical analysis
• B. Fuzz testing
• C. Covert channel analysis
• D. Protocol analysis

Correct answer: C

Explanation

Covert channel analysis is the correct technique as it focuses specifically on identifying hidden paths for information transfer that can bypass security measures. The other techniques, such as machine-learning statistical analysis, fuzz testing, and protocol analysis, do not directly target the aspect of undetected data transmission control bypassing.