CompTIA SecurityX (CAS-005) — Question 225

A security team is concerned with attacks that are taking advantage of return-oriented programming against the company’s public-facing applications. Which of the following should the company implement on the public-facing servers?

Answer options

• A. IDS
• B. ASLR
• C. TPM
• D. HSM

Correct answer: B

Explanation

ASLR (Address Space Layout Randomization) helps protect applications by randomizing the memory addresses used by system and application processes, making it harder for attackers to predict the location of executable code. IDS (Intrusion Detection System), TPM (Trusted Platform Module), and HSM (Hardware Security Module) do not specifically address the vulnerabilities associated with return-oriented programming, thus making ASLR the most appropriate choice for this scenario.