CompTIA CASP+ (CAS-004) — Question 599

An organization requires a legacy system to incorporate reference data into a new system. The organization anticipates the legacy system will remain in operation for the next 18 to 24 months. Additionally, the legacy system has multiple critical vulnerabilities with no patches available to resolve them. Which of the following is the BEST design option to optimize security?

Answer options

• A. Limit access to the system using a jump box.
• B. Place the new system and legacy system on separate VLANs.
• C. Deploy the legacy application on an air-gapped system.
• D. Implement MFA to access the legacy system.

Correct answer: B

Explanation

The best option is B, as placing the new system and legacy system on separate VLANs helps isolate the legacy system and prevents potential threats from affecting the new system. Option A, while it adds a layer of access control, does not address the vulnerabilities directly. Option C, deploying on an air-gapped system, could be effective but may limit necessary data integration. Option D, implementing MFA, enhances access security but does not mitigate the risks posed by the vulnerabilities.