Which of the following is NOT typically considered a security control?

Unlock all questions

This demo includes only 20 questions. Upgrade to access hundreds of questions, flashcards, exam simulations, and disable ads.

Full question bankExam simulationsFlashcards

From $24.99Unlock all

Get ready for your WGU ITEC2034 D385 Software Security and Testing Test. Study with multiple choice questions that include hints and explanations. Boost your confidence for your exam day!

Multiple Choice

Which of the following is NOT typically considered a security control?

Security controls are mechanisms that enforce security properties in a system. Authentication is the process that confirms who a user is, and authorization determines what that authenticated user is allowed to do. Encryption protects data by making it unreadable to anyone who shouldn’t access it. Open ports, on the other hand, are not a protective measure themselves; they’re a condition that can increase risk by exposing services to the network. To mitigate that risk you’d apply controls like firewall rules to close or restrict unused ports, plus network segmentation and monitoring. So, open ports describe a potential vulnerability rather than a control, which is why they’re not considered a security control.

Which of the following is NOT typically considered a security control?

Get ready for your WGU ITEC2034 D385 Software Security and Testing Test. Study with multiple choice questions that include hints and explanations. Boost your confidence for your exam day!

Which of the following is NOT typically considered a security control?

Get the latest from Examzify