CompTIA Security Plus Mock Test Q386

Which of the following risks could IT management be mitigating by removing an all-in-one device?

A. Continuity of operations
B. Input validation
C. Single point of failure
D. Single sign on

Correct Answer: C
Section: Compliance and Operational Security

Explanation:
The major disadvantage of combining everything into one, although you do this to save costs, is to include a potential single point of failure and the reliance/dependence on a single vendor.

Incorrect Answers:
A: Continuity of operation plan refers to policies, processes and methods that an organization has to follow to minimize the impact of failure of the key components needed for
operations.
B: Input validation refers to secure coding and removing an all-in-one device is not mitigating an input validation problem. Rather you are mitigating a single point of failure problem.
D: Single sign-on is an authentication issue.

References:
Dulaney, Emmett and Chuck Eastton, CompTIA Security+ Study Guide, 6th Edition, Sybex, Indianapolis, 2014, pp. 30, 136, 432