CompTIA SecurityX (CAS-005) — Question 184
Emails that the marketing department is sending to customers are going to the customers’ spam folders. The security team is investigating the issue and discovers that the certificates used by the email server were reissued, but DNS records had not been updated. Which of the following should the security team update in order to fix this issue? (Choose three.)
Answer options
- A. DMARC
- B. SPF
- C. DKIM
- D. DNSSEC
- E. SASE
- F. SAN
- G. SOA
- H. MX
Correct answer: A, B, C
Explanation
The correct options are DMARC, SPF, and DKIM, as they are essential for authenticating emails and ensuring they are not marked as spam. Updating these records helps improve email deliverability. The other options, such as DNSSEC and SASE, are related to security and networking but do not directly address email authentication issues.