Written by students who passed Immediately available after payment Read online or as PDF Wrong document? Swap it for free 4.6 TrustPilot
logo-home
Exam (elaborations)

COMPTIA SECURITY+ –QUESTIONS AND CORRECT ANSWERS (VERIFIED ANSWERS) PLUS RATIONALES 2026 Q&A | INSTANT DOWNLOAD PDF.

Rating
-
Sold
-
Pages
66
Grade
A+
Uploaded on
21-05-2026
Written in
2025/2026

COMPTIA SECURITY+ –QUESTIONS AND CORRECT ANSWERS (VERIFIED ANSWERS) PLUS RATIONALES 2026 Q&A | INSTANT DOWNLOAD PDF.

Institution
COMPTIA SECURITY+
Course
COMPTIA SECURITY+

Content preview

COMPTIA SECURITY+ –QUESTIONS AND CORRECT ANSWERS (VERIFIED ANSWERS) PLUS RATIONALES
2026 Q&A | INSTANT DOWNLOAD PDF.




CORE DOMAINS


* Threat Environments
* Vulnerability Management
* Security Architecture
* Identity and Access Management
* Risk Management
* Cryptography and PKI
* Incident Response
* Regulatory Compliance and Ethics

INTRODUCTION


*The CompTIA Security+ certification exam serves as the primary benchmark for validating foundational, vendor-neutra
 




SECTION ONE: QUESTIONS 1–100

1. A security administrator identifies that an unauthorized device is connected to a secure internal network segment.
Which of the following technologies should be implemented to prevent this in the future?

A. Network Address Translation
B. Port-based Authentication
C. VLAN Trunking

,D. Application Layer Filtering
🟢 B. Port-based Authentication
🔴 RATIONALE: Port-based authentication, specifically IEEE 802.1X, restricts network access by requiring devices to
authenticate before gaining access to the network port.

2. Which cryptographic method is best suited for encrypting large amounts of data at rest?

A. RSA
B. Diffie-Hellman
C. AES
D. ECC
🟢 C. AES
🔴 RATIONALE: Advanced Encryption Standard (AES) is a symmetric encryption algorithm that is highly efficient for
bulk data encryption.

3. An organization must comply with a regulation that requires all sensitive financial data to be encrypted in transit.
Which protocol should be prioritized?

A. Telnet
B. FTP
C. TLS 1.3
D. HTTP
🟢 C. TLS 1.3
🔴 RATIONALE: Transport Layer Security (TLS) provides secure communication over a network, and version 1.3 is
the current standard for protecting data in transit.

4. A technician notices unusual traffic patterns originating from an internal workstation, suggesting a possible botnet
infection. What is the first step in the incident response process?

A. Eradication
B. Recovery

,C. Preparation
D. Identification
🟢 D. Identification
🔴 RATIONALE: The first step in the CompTIA incident response cycle is identification (or detection), where the
presence of the incident is confirmed.

5. Which attack type involves an attacker intercepting communication between two parties who believe they are
talking to each other?

A. Man-in-the-middle
B. Replay attack
C. Cross-site scripting
D. SQL injection
🟢 A. Man-in-the-middle
🔴 RATIONALE: A Man-in-the-middle (MitM) attack allows an adversary to intercept, relay, or alter communications
between two unsuspecting parties.

6. A user reports that they received an email requesting them to click a link to update their password on a site that
mimics the corporate login page. What type of attack is this?

A. Whaling
B. Phishing
C. Smishing
D. Vishing
🟢 B. Phishing
🔴 RATIONALE: Phishing is the practice of sending fraudulent emails that appear to come from a reputable source to
induce individuals to reveal personal information.

7. Which of the following is an example of an asynchronous authentication factor?

, A. Password
B. Smart card
C. PIN
D. Pattern lock
🟢 B. Smart card
🔴 RATIONALE: A smart card is a "something you have" factor, which is considered a form of hardware-based
authentication.

8. Which security model is based on the concept of "never trust, always verify"?

A. Zero Trust
B. Defense in Depth
C. Perimeter Security
D. Least Privilege
🟢 A. Zero Trust
🔴 RATIONALE: The Zero Trust model assumes that the network is always hostile and requires strict verification for
every person and device trying to access resources.

9. An organization wants to ensure that data remains confidential even if a drive is stolen from a server. Which
solution is most effective?

A. File system permissions
B. Full disk encryption
C. Folder shadowing
D. RAID 5
🟢 B. Full disk encryption
🔴 RATIONALE: Full disk encryption (FDE) encrypts all data on a storage medium, ensuring it cannot be accessed
without the correct decryption key if the drive is physically removed.

10. A company needs to implement a policy that requires employees to change their passwords every 90 days.
Which administrative control is this?

Written for

Institution
COMPTIA SECURITY+
Course
COMPTIA SECURITY+

Document information

Uploaded on
May 21, 2026
Number of pages
66
Written in
2025/2026
Type
Exam (elaborations)
Contains
Questions & answers

Subjects

$25.99
Get access to the full document:

Wrong document? Swap it for free Within 14 days of purchase and before downloading, you can choose a different document. You can simply spend the amount again.
Written by students who passed
Immediately available after payment
Read online or as PDF


Also available in package deal

Thumbnail
Package deal
COMPTIA SECURITY+ – QUESTIONS AND CORRECT ANSWERS (VERIFIED ANSWERS) PLUS RATIONALES 2026 Q&A | INSTANT DOWNLOAD PDF.
-
2 2026
$ 10.99 More info

Get to know the seller

Seller avatar
Reputation scores are based on the amount of documents a seller has sold for a fee and the reviews they have received for those documents. There are three levels: Bronze, Silver and Gold. The better the reputation, the more your can rely on the quality of the sellers work.
Excellentdocsolution Stanford University
View profile
Follow You need to be logged in order to follow users or courses
Sold
17
Member since
1 year
Number of followers
2
Documents
3238
Last sold
8 hours ago
EXELENCE IN EDUCATIOIN

BEST AND AFFORDABLE PRICE

0.0

0 reviews

5
0
4
0
3
0
2
0
1
0

Why students choose Stuvia

Created by fellow students, verified by reviews

Quality you can trust: written by students who passed their tests and reviewed by others who've used these notes.

Didn't get what you expected? Choose another document

No worries! You can instantly pick a different document that better fits what you're looking for.

Pay as you like, start learning right away

No subscription, no commitments. Pay the way you're used to via credit card and download your PDF document instantly.

Student with book image

“Bought, downloaded, and aced it. It really can be that simple.”

Alisha Student

Working on your references?

Create accurate citations in APA, MLA and Harvard with our free citation generator.

Working on your references?

Frequently asked questions