CompTIA Security+ (SY0-601) — Question 366
Which of the following can be used to identify potential attacker activities without affecting production servers?
Answer options
- A. Honeypot
- B. Video surveillance
- C. Zero trust
- D. Geofencing
Correct answer: A
Explanation
The correct answer is A, Honeypot, as it is specifically designed to lure attackers and monitor their actions without impacting actual production environments. The other options, such as video surveillance, zero trust, and geofencing, do not directly simulate or capture attacker behavior in a controlled manner, thus are less effective for this purpose.