CompTIA SecurityX (CAS-005) — Question 317

A junior developer is informed about the impact of new malware on an Advanced RISC Machine (ARM) CPU, and the code must be fixed accordingly. Based on the debug, the malware is able to insert itself in another process memory location. Which of the following technologies can the developer enable on the ARM architecture to prevent this type of malware?

Answer options

• A. Execute never
• B. No-execute
• C. Total memory encryption
• D. Virtual memory protection

Correct answer: A

Explanation

The correct answer is 'Execute never' because it prevents code from being executed in designated regions of memory, which can stop malware from running even if it manages to insert itself. The 'No-execute' option is similar but may not provide the same level of protection on all ARM architectures. 'Total memory encryption' and 'Virtual memory protection' focus on other security aspects but do not specifically prevent execution of injected malware.