NO.1 A security architect is designing a new infrastructure using both type 1 and type 2 virtual
machines. In addition to the normal complement of security controls (e.g. antivirus, host hardening,
HIPS/NIDS) the security architect needs to implement a mechanism to securely store cryptographic
keys used to sign code and code modules on the VMs. Which of the following will meet this goal
without requiring any hardware pass-through implementations?
A. HSM
B. INE
C. TPM
D. vTPM
Answer: D
CAS-002 questions         CAS-002 Real Dumps              CAS-002 Study Guide   
Explanation:
A Trusted Platform Module (TPM) is a microchip designed to provide basic security-related functions,
primarily involving encryption keys. The TPM is usually installed on the motherboard of a computer,
and it communicates with the remainder of the system by using a hardware bus.
A vTPM is a virtual Trusted Platform Module.
IBM extended the current TPM V1.2 command set with virtual TPM management commands that
allow us to create and delete instances of TPMs. Each created instance of a TPM holds an association
with a virtual machine (VM) throughout its lifetime on the platform.

NO.2 The risk committee has endorsed the adoption of a security system development life cycle
(SSDLC) designed to ensure compliance with PCI-DSS, HIPAA, and meet the organization's mission.
Which of the following BEST describes the correct order of implementing a five phase SSDLC?
A. Assessment, initiation/development, implementation/assessment, operations/maintenance and
disposal.
B. Acquisition, initiation/development, implementation/assessment, operations/maintenance and
disposal.
C. Initiation, assessment/acquisition, development/implementation, operations/maintenance and
sunset.
D. Initiation, acquisition/development, implementation/assessment, operations/maintenance and
sunset.
Answer: D
CAS-002 Free download       CAS-002 Exam Prep       CAS-002 Test Questions       CAS-002 Free Demo

Maybe you are still worried about how to prepare for CAS-002 pdf vce. You will stop worrying when you read this entry, because you have found the most authoritative professional provider of IT exam dumps. Our exam software has helped a lot of IT workers successfully get CAS-002 pdf vce. The reason why they pass the exam easily is very simple. They all make use of our most complete and latest dumps. We will provide on-year free update service after you purchased CAS-002 pdf vce software.

Exam Code: CAS-002

Exam Name: CompTIA Advanced Security Practitioner (CASP)

One year free update, No help, Full refund!
CAS-002 Exam Tests Total Q&A: 465 Questions and Answers
Last Update: 10-20,2016

CAS-002 Real Questions Detail: CAS-002 Exam Tests

DumpKiller offer the latest 400-101 exam material and high-quality P2090-018 pdf questions & answers. Our HP0-Y50 VCE testing engine and 70-346 study guide can help you pass the real exam. High-quality 70-413 dumps training materials can 100% guarantee you pass the exam faster and easier. Pass the exam to obtain certification is so simple.

Article Link: http://www.dumpkiller.com/CAS-002_braindumps.html

CompTIA Advanced Security Practitioner
Exam Code:CAS-002
Number of Questions:80 (Maximum)
Type of questions:Multiple choice and performance-based
Length of Test:165 minutes
Passing score:Pass/Fail only. No scaled score.
Recommended experience:10 years experience in IT administration, including at least 5 years of hands-on technical security experience
Languages:English
Retirement:The old exam CAS-001 will retire on June 20, 2015