CompTIA Security+ (SY0-701) — Question 312

An organization purchased a critical business application containing sensitive data. The organization would like to ensure that the application is not exploited by common data exfiltration attacks. Which of the following approaches would best help to fulfill this requirement?

Answer options

• A. URL scanning
• B. WAF
• C. Reverse proxy
• D. NAC

Correct answer: B

Explanation

A Web Application Firewall (WAF) is designed to protect web applications by filtering and monitoring HTTP traffic, making it effective against data exfiltration attacks. URL scanning, a reverse proxy, and NAC do not specifically focus on the protection of applications from such attacks, making them less suitable for this requirement.