CompTIA Security+ (SY0-501) — Question 469

Which of the following is the BEST reason to run an untested application is a sandbox?

Answer options

• A. To allow the application to take full advantage of the host system's resources and storage
• B. To utilize the host systems antivirus and firewall applications instead of running it own protection
• C. To prevent the application from acquiring escalated privileges and accessing its host system
• D. To increase application processing speed so the host system can perform real-time logging

Correct answer: C

Explanation

Running an untested application in a sandbox is crucial to prevent it from gaining escalated privileges and accessing sensitive parts of the host system, which is precisely what option C states. Options A and D are incorrect as they focus on performance benefits rather than security. Option B is also wrong because relying solely on the host's security mechanisms can expose the system to risks if the application is untested.