CISSP – Information Systems Security Management Professional (ISSMP) — Question 26
Which of the following statements about system hardening are true? Each correct answer represents a complete solution. Choose two.
Answer options
- A. It can be achieved by installing service packs and security updates on a regular basis.
- B. It is used for securing the computer hardware.
- C. It can be achieved by locking the computer room.
- D. It is used for securing an operating system.
Correct answer: A, D
Explanation
Option A is correct because applying service packs and security updates regularly is an essential part of system hardening. Option D is also correct as system hardening specifically targets the security of the operating system. Options B and C are incorrect because system hardening primarily addresses software vulnerabilities rather than physical hardware or securing physical locations.