CompTIA Security+ (SY0-501) — Question 30

Which of the following is the BEST explanation of why control diversity is important in a defense-in-depth architecture?

Answer options

• A. Social engineering is used to bypass technical controls, so having diversity in controls minimizes the risk of demographic exploitation
• B. Hackers often impact the effectiveness of more than one control, so having multiple copies of individual controls provides redundancy
• C. Technical exploits to defeat controls are released almost every day; control diversity provides overlapping protection.
• D. Defense-in-depth relies on control diversity to provide multiple levels of network hierarchy that allow user domain segmentation

Correct answer: D

Explanation

The correct answer, D, emphasizes that control diversity is essential for creating various layers within the network, which aids in segmenting user domains effectively. Option A incorrectly focuses on social engineering, while B suggests redundancy of the same control, which does not address the need for diversity. Option C, while mentioning protection, does not specifically highlight the structural benefits provided by control diversity in network segmentation.