CompTIA Exam SY0-701 Topic 1 Question 21 Discussion

Actual exam question for CompTIA's SY0-701 exam

Question #: 21
Topic #: 1

An organization wants to ensure the integrity of compiled binaries in the production environment. Which of the following security measures would best support this objective?

AInput validation

BCode signing

CSQL injection

DStatic analysis

Show Suggested Answer

Suggested Answer: B

To ensure the integrity of compiled binaries in the production environment, the best security measure is code signing. Code signing uses digital signatures to verify the authenticity and integrity of the software, ensuring that the code has not been tampered with or altered after it was signed.

Code signing: Involves signing code with a digital signature to verify its authenticity and integrity, ensuring the compiled binaries have not been altered.

Input validation: Ensures that only properly formatted data enters an application but does not verify the integrity of compiled binaries.

SQL injection: A type of attack, not a security measure.

Static analysis: Analyzes code for vulnerabilities and errors but does not ensure the integrity of compiled binaries in production.

by Peggie at Aug 07, 2024, 07:11 AM

Limited Time Offer

25%

Off

Get Premium SY0-701 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel

Thurman

11 months ago

Static analysis can definitely help too, but I still think code signing is the best choice.

upvoted 0 times

...

Talia

11 months ago

I heard the guy who wrote this question likes to code in Comic Sans. No wonder he's so confused about security measures.

upvoted 0 times

...

Fletcher

11 months ago

Input validation? What is this, amateur hour? If you want to keep your binaries secure, you need to sign that code like your life depends on it.

upvoted 0 times

...

Kaitlyn

11 months ago

I'm not sure about that. I think D) Static analysis could also be a good option.

upvoted 0 times

...

Michell

11 months ago

I agree with Thurman. Code signing can help ensure the integrity of compiled binaries.

upvoted 0 times

...

Francene

11 months ago

Static analysis? Are we trying to catch bugs or verify integrity? Code signing is the way to go, my friends.

upvoted 0 times

Stevie

10 months ago

Static analysis can help catch bugs, but code signing is what we need to verify integrity in the production environment.

upvoted 0 times

...

Freeman

10 months ago

Code signing is definitely the way to go for ensuring the integrity of compiled binaries.

upvoted 0 times

...

Tanja

11 months ago

SQL injection? Really? I think someone needs to go back to security basics. Code signing is the obvious choice here.

upvoted 0 times

...

Melda

11 months ago

Code signing all the way! That's the only way to ensure those binaries haven't been tampered with. Anything less is just asking for trouble.

upvoted 0 times

Shantell

10 months ago

Input validation is important for preventing malicious input, but it doesn't guarantee the integrity of compiled binaries.

upvoted 0 times

...

Chauncey

10 months ago

SQL injection is a completely different issue, not related to ensuring binary integrity.

upvoted 0 times

...

Carri

10 months ago

SQL injection is a completely different issue and not relevant for ensuring the integrity of compiled binaries.

upvoted 0 times

...

Stephane

10 months ago

Static analysis can also help in detecting any potential vulnerabilities in the code.

upvoted 0 times

...

Aja

11 months ago

Static analysis can also help identify any potential vulnerabilities in the code.

upvoted 0 times

...

Jeff

11 months ago

I agree, code signing is crucial for ensuring the integrity of compiled binaries.

upvoted 0 times

...

Phyliss

11 months ago

I agree, code signing is crucial for ensuring the integrity of binaries.

upvoted 0 times

...

Thurman

12 months ago

I think the best option is B) Code signing.

upvoted 0 times

...