CompTIA Security+ (SY0-701) — Question 10

A company is required to use certified hardware when building networks. Which of the following best addresses the risks associated with procuring counterfeit hardware?

Answer options

• A. A thorough analysis of the supply chain
• B. A legally enforceable corporate acquisition policy
• C. A right to audit clause in vendor contracts and SOWs
• D. An in-depth penetration test of all suppliers and vendors

Correct answer: A

Explanation

Option A is correct because a thorough analysis of the supply chain helps identify potential vulnerabilities and sources of counterfeit hardware. The other options, while important, do not specifically address the issue of counterfeit hardware as effectively as analyzing the supply chain does.