Certified Information Systems Security Professional (CISSP) — Question 440

Which application type is considered high risk and provides a common way for malware and viruses to enter a network?

Answer options

• A. Instant messaging or chat applications
• B. Peer-to-Peer (P2P) file sharing applications
• C. E-mail applications
• D. End-to-end applications

Correct answer: B

Explanation

Peer-to-Peer (P2P) file sharing applications are considered high risk as they often allow users to share files directly, making it easier for malware to spread. Instant messaging, email applications, and end-to-end applications can also pose risks, but P2P applications are particularly vulnerable due to their nature of file sharing without centralized control.