Certified Information Systems Security Professional (CISSP) — Question 152

Which of the following is MOST effective method of defending against zero-day malware threats?

Answer options

• A. Client firewalls
• B. Client event logging
• C. Client application whitelisting
• D. Client antivirus

Correct answer: C

Explanation

Client application whitelisting is the most effective defense against zero-day malware as it only allows approved applications to run, thereby blocking any unknown threats. Client firewalls and antivirus can provide some level of protection, but they may not detect or prevent attacks from new malware that has not yet been identified. Client event logging is useful for monitoring but does not actively prevent malware execution.