ExpertMedium1 markMultiple Choice
CPA · Question 44 · Area II: Security
An organization implements a 'Zero Trust' architecture. Which principle is central to this approach?
An organization implements a 'Zero Trust' architecture. Which principle is central to this approach?
Answer options:
A.
Trust but verify.
B.
Trust internal network, verify external.
C.
Never trust, always verify.
D.
Trust all authenticated users.
How to approach this question
Recall the Zero Trust motto.
Full Answer
C.Never trust, always verify.✓ Correct
Zero Trust assumes there is no implicit trust granted to assets or user accounts based solely on their physical or network location. Every request must be authenticated and authorized.
Common mistakes
Selecting 'Trust but verify' which is the opposite.
Practice the full CPA ISC Practice Exam 5
82 questions · hints · full answers · grading
More questions from this exam
Q01A service organization provides a cloud-based payroll processing application to its user entities...MediumQ02An auditor is reviewing the shared responsibility model for a client using an Infrastructure as a...HardQ03A financial institution requires a cloud deployment model that offers the highest level of contro...MediumQ04During an IT audit, you observe that a company uses a 'Hybrid Cloud' architecture. Which scenario...MediumQ05Which component of IT architecture is primarily responsible for translating domain names (like ww...Easy