ExpertMedium1 markMultiple Choice
CPA · Question 37 · Area II: Security
An auditor is reviewing a firewall configuration. They see a rule at the bottom of the Access Control List (ACL) that says 'DENY ALL'. What is this practice called?
An auditor is reviewing a firewall configuration. They see a rule at the bottom of the Access Control List (ACL) that says 'DENY ALL'. What is this practice called?
Answer options:
A.
Implicit Deny / Default Deny
B.
Explicit Allow
C.
Stateful Inspection
D.
Port Forwarding
How to approach this question
Identify the security best practice of 'Block everything unless I say otherwise'.
Full Answer
A.Implicit Deny / Default Deny✓ Correct
A 'Default Deny' or 'Implicit Deny' rule ensures that any traffic not specifically allowed by a preceding rule is blocked. This is a fundamental security best practice.
Common mistakes
Confusing the technology (Stateful) with the policy (Deny).
Practice the full CPA ISC Practice Exam 3
82 questions · hints · full answers · grading
More questions from this exam
Q01A CPA is advising a client who is migrating their legacy on-premise ERP system to a cloud-based s...MediumQ02During a review of a client's cloud governance structure, an auditor notes that the client uses a...MediumQ03An auditor is evaluating the 'Processing Integrity' principle for a financial institution's loan ...HardQ04A company uses a batch processing system to update inventory records overnight. The 'Grandfather-...HardQ05During a walkthrough of the change management process, an auditor observes that the 'Developer' r...Medium