Exam CAS-005 Topic 4 Question 23 Discussion
Actual exam question for CompTIA's CAS-005 exam
Question #: 23
Topic #: 4
Question #: 23
Topic #: 4
A cloud engineer wants to configure mail security protocols to support email authenticity and enable the flow of email security information to a third-party platform for further analysis. Which of the following must be configured to achieve these requirements? (Select two).
Suggested Answer: A,B Vote an answer
To support email authenticity and enable analysis by a third-party platform, the protocols must verify the sender's identity and provide metadata for inspection. According to the CompTIA SecurityX CAS-005 study guide (Domain 3: Cybersecurity Technology, 3.2):
* DMARC (Domain-based Message Authentication, Reporting, and Conformance):DMARC builds on SPF and DKIM to enforce policies for email authenticity and provides reporting mechanisms to share authentication results with third parties for analysis.
* DKIM (DomainKeys Identified Mail):DKIM adds a cryptographic signature to emails, allowing recipients to verify the sender's domain and ensure the email's integrity.
These two protocols are essential for authenticity and reporting.
* Option C (TLS):TLS ensures encryption during transmission but does not address authenticity or reporting.
* Option D (SPF):SPF verifies sender IP addresses but lacks reporting capabilities without DMARC.
* Option E (DNSSEC):DNSSEC secures DNS queries but is not specific to email authenticity.
* Option F (MX):MX records define mail servers, not authenticity or reporting.
Reference:
CompTIA SecurityX CAS-005 Official Study Guide, Domain 3: Cybersecurity Technology, Section 3.2:
"Configure email security protocols, including DMARC and DKIM."
CAS-005 Exam Objectives, 3.2: "Implement technologies for email security and authenticity."
* DMARC (Domain-based Message Authentication, Reporting, and Conformance):DMARC builds on SPF and DKIM to enforce policies for email authenticity and provides reporting mechanisms to share authentication results with third parties for analysis.
* DKIM (DomainKeys Identified Mail):DKIM adds a cryptographic signature to emails, allowing recipients to verify the sender's domain and ensure the email's integrity.
These two protocols are essential for authenticity and reporting.
* Option C (TLS):TLS ensures encryption during transmission but does not address authenticity or reporting.
* Option D (SPF):SPF verifies sender IP addresses but lacks reporting capabilities without DMARC.
* Option E (DNSSEC):DNSSEC secures DNS queries but is not specific to email authenticity.
* Option F (MX):MX records define mail servers, not authenticity or reporting.
Reference:
CompTIA SecurityX CAS-005 Official Study Guide, Domain 3: Cybersecurity Technology, Section 3.2:
"Configure email security protocols, including DMARC and DKIM."
CAS-005 Exam Objectives, 3.2: "Implement technologies for email security and authenticity."
by Isaac at Jul 04, 2025, 12:12 AM
0
0
0
10
Comments
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
Report Comment
Commenting
You can sign-up / login (it's free).