CompTIA CySA+ (CS0-002) — Question 72

A proposed network architecture requires systems to be separated from each other logically based on defined risk levels. Which of the following explains the reason why an architect would set up the network this way?

Answer options

• A. To complicate the network and frustrate a potential malicious attacker
• B. To create a design that simplifies the supporting network
• C. To reduce the attack surface of those systems by segmenting the network based on risk
• D. To reduce the number of IP addresses that are used on the network

Correct answer: C

Explanation

The correct answer, C, highlights that segmenting the network according to risk levels helps to reduce the attack surface, making it harder for threats to spread. Options A and B suggest motives that do not directly address security concerns, while D focuses on IP address management rather than risk-based segmentation.