CompTIA Security+ (SY0-501) — Question 201

A company would like to prevent the use of a known set of applications from being used on company computers.
Which of the following should the security administrator implement?

Answer options

• A. Whitelisting
• B. Anti-malware
• C. Application hardening
• D. Blacklisting
• E. Disable removable media

Correct answer: D

Explanation

The correct answer is D, Blacklisting, because it involves creating a list of applications that are not allowed to run on company systems. Whitelisting (A) is the opposite approach, allowing only approved applications, while anti-malware (B) focuses on detecting and removing malicious software. Application hardening (C) enhances the security of applications rather than blocking them, and disabling removable media (E) does not directly address application usage.