CompTIA Security+ (SY0-601) — Question 391

Which of the following mitigation techniques places devices in physically or logically separated networks and leverages policies to limit the types of communications that are allowed?

Answer options

• A. Host-based firewalls
• B. Access control list
• C. Port security
• D. Least privilege

Correct answer: B

Explanation

The correct answer is B, as access control lists (ACLs) are specifically designed to enforce policies that regulate communication between different network segments. The other options, such as host-based firewalls, port security, and least privilege, do not primarily focus on the separation of networks and policy enforcement in the same way that ACLs do.