CompTIA CASP+ (CAS-004) — Question 592

A company was recently infected by malware. During the root cause analysis, the company determined that several users were installing their own applications.
To prevent further compromises, the company has decided it will only allow authorized applications to run on its systems. Which of the following should the company implement?

Answer options

• A. Signing
• B. Access control
• C. HIPS
• D. Permit listing

Correct answer: D

Explanation

Permit listing is the correct answer because it allows only specified applications to run, effectively preventing unauthorized software from being executed. Signing and access control are related concepts but do not specifically restrict applications to a whitelist. HIPS (Host Intrusion Prevention System) is more focused on detecting and preventing malicious activities rather than enforcing application restrictions.