3.2 Implement host or application security solutions

Question 1

Endpoint protection
-Antivirus

Question 2

Endpoint protection
-Anti-malware

Question 3

Endpoint protection
-Endpoint detection and response (EDR)

Question 4

Endpoint protection
-DLP

Question 5

Endpoint protection
-Next-generation firewall (NGFW)

Question 6

Endpoint protection
-Host-based intrusion prevention system (HIPS)

Question 7

Endpoint protection
-Host-based intrusion detection system (HIDS)

Question 8

Endpoint protection
-Host-based firewall

Question 9

Boot integrity
-Boot security/Unified Extensible Firmware Interface (UEFI)

Question 10

Boot integrity
-Measured boot

Question 11

Boot integrity
-Boot attestation

Question 12

Database
-Tokenization

Question 13

Database
-Salting

Question 14

Database
-Hashing

Question 15

Application security
-Input validations

Question 16

Application security
-Secure validations

Question 17

Application security
-Hypertext Transfer Protocol (HTTP) headers

Question 18

Application security
-Code signing

Question 19

Application security
-Allow list

Question 20

Application security
-Block list/deny list

Question 21

Application security
-Secure coding practices

Question 22

Application security
-Static code analysis
-Manual code review

Question 23

Application security
-Dynamic code analysis

Question 24

Application security
-Fuzzing

Question 25

Hardening
-Open ports and services

Question 26

Hardening
-Registry

Question 27

Hardening
-Disk encryption

Question 28

Hardening
-OS

Question 29

Hardening
-Patch management
-Third-party

Question 30

Hardening
-Patch management
-Auto-update

Question 31

Self-encryption drive (SDE)/full-disk encryption (FDE)
-Opal

Question 32

Hardware root of trust

Question 33

Trusted Platform Module (TPM)