Exam CAS-005 Topic 1 Question 390 Discussion
Actual exam question for CompTIA's CAS-005 exam
Question #: 390
Topic #: 1
Question #: 390
Topic #: 1
A financial technology firm works collaboratively with business partners in the industry to share threat intelligence within a central platform This collaboration gives partner organizations the ability to obtain and share data associated with emerging threats from a variety of adversaries Which of the following should the organization most likely leverage to facilitate this activity? (Select two).
Suggested Answer: D,E Vote an answer
* D. STIX (Structured Threat Information eXpression): STIX is a standardized language for representing threat information in a structured and machine-readable format. It facilitates the sharing of threat intelligence by ensuring that data is consistent and can be easily understood by all parties involved.
* E. TAXII (Trusted Automated eXchange of Indicator Information): TAXII is a transport mechanism that enables the sharing of cyber threat information over a secure and trusted network. It works in conjunction with STIX to automate the exchange of threat intelligence among organizations.
Other options:
* A. CWPP (Cloud Workload Protection Platform): This focuses on securing cloud workloads and is not directly related to threat intelligence sharing.
* B. YARA: YARA is used for malware research and identifying patterns in files, but it is not a platform for sharing threat intelligence.
* C. ATT&CK: This is a knowledge base of adversary tactics and techniques but does not facilitate the sharing of threat intelligence data.
* F. JTAG: JTAG is a standard for testing and debugging integrated circuits, not related to threat intelligence.
References:
* CompTIA Security+ Study Guide
* "STIX and TAXII: The Backbone of Threat Intelligence Sharing" by MITRE
* NIST SP 800-150, "Guide to Cyber Threat Information Sharing"
* E. TAXII (Trusted Automated eXchange of Indicator Information): TAXII is a transport mechanism that enables the sharing of cyber threat information over a secure and trusted network. It works in conjunction with STIX to automate the exchange of threat intelligence among organizations.
Other options:
* A. CWPP (Cloud Workload Protection Platform): This focuses on securing cloud workloads and is not directly related to threat intelligence sharing.
* B. YARA: YARA is used for malware research and identifying patterns in files, but it is not a platform for sharing threat intelligence.
* C. ATT&CK: This is a knowledge base of adversary tactics and techniques but does not facilitate the sharing of threat intelligence data.
* F. JTAG: JTAG is a standard for testing and debugging integrated circuits, not related to threat intelligence.
References:
* CompTIA Security+ Study Guide
* "STIX and TAXII: The Backbone of Threat Intelligence Sharing" by MITRE
* NIST SP 800-150, "Guide to Cyber Threat Information Sharing"
by Lewis at Feb 17, 2026, 09:29 AM
0
0
0
10
Comments
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
Report Comment
Commenting
You can sign-up / login (it's free).