CompTIA Security Plus Mock Test Q257

The network administrator is responsible for promoting code to applications on a DMZ web server. Which of the following processes is being followed to ensure application integrity?

A. Application hardening
B. Application firewall review
C. Application change management
D. Application patch management


Correct Answer: C
Section: Compliance and Operational Security

Explanation:
Change management is the structured approach that is followed to secure a company’s assets. Promoting code to application on a SMZ web server would be change management.

Incorrect Answers:
A: Application Hardening is a strategy to make servers and workstations less vulnerable to exploitation and attack.
B: Application firewall review is a strategy used to look for risk, threat, and vulnerability.
D: Application patch management is used to support ownership in that it will keep your software up to date. In most cases the software would be the operating system rather than
applications.

References:
Dulaney, Emmett and Chuck Eastton, CompTIA Security+ Study Guide, 6th Edition, Sybex, Indianapolis, 2014, pp. 10, 215-218, 345