Which of the following mitigation techniques would a security analyst most likely use to avoid bloatware on devices?

Rationale

Application allow list

An application allow list is a proactive security measure that restricts the installation and execution of software on devices to only those applications that are pre-approved. By implementing this technique, security analysts can effectively prevent the installation of bloatware, ensuring that only necessary and vetted applications are allowed to run on devices.

A (Disabled ports/protocols) YOUR ANSWER

Disabling ports and protocols is a security practice aimed at reducing the attack surface by preventing unauthorized access to system resources and services. While this technique enhances network security, it does not address the issue of unwanted software installation or bloatware, which is primarily managed through application controls.

B (Application allow list) CORRECT

This is the correct answer as it directly targets the problem of bloatware by only permitting the execution of pre-approved applications. This method ensures that any unapproved or unnecessary software, which could be classified as bloatware, is automatically blocked from being installed or run on the device.

C (Default password changes) YOUR ANSWER

Changing default passwords is a crucial security practice that helps protect systems from unauthorized access. However, this technique does not influence the management of software on devices and therefore does not mitigate the risks associated with bloatware.

D (Access control permissions) YOUR ANSWER

Access control permissions manage user rights and privileges within a system, determining who can access or modify resources. While important for overall security, this method does not specifically prevent the installation of bloatware, which is better addressed through application allow listing.

Conclusion

To effectively mitigate bloatware on devices, implementing an application allow list is essential as it limits software execution to only trusted applications. Other techniques, such as disabling ports, changing default passwords, and managing access controls, enhance security but do not directly tackle the issue of unnecessary software installation. By focusing on application whitelisting, security analysts can maintain a streamlined and efficient environment.

Which of the following mitigation techniques would a security analyst most likely use to avoid bloatware on devices?

Application allow list

Related Questions

Related Quizzes

How familiar were you with this question?

Report an Issue

Rate this Practice Test