What is the concept of defensible architecture and its significance for Annex B?

Prepare for the DSAC-11 Annex B Test. Study with our quiz featuring flashcards and multiple-choice questions, each question accompanied by hints and explanations. Get ready to excel!

Multiple Choice

What is the concept of defensible architecture and its significance for Annex B?

Explanation:
Defensible architecture means building systems that can resist and withstand attacks by starting with secure defaults, using trusted and validated components, and maintaining strong monitoring to detect and respond to incidents. This approach reduces both the likelihood and impact of breaches, supports rapid containment, and makes security properties easier to verify during assessments. In Annex B contexts, this mindset matters because it emphasizes resilience, defense in depth, and the ability to operate safely even when parts of the environment are attacked or compromised. Secure defaults keep configurations safe out of the box, validated components reduce supply-chain and compatibility risks, and robust monitoring provides early detection, timely response, and forensics data—all aligning with the rigorous requirements typically evaluated in Annex B. The option describing these elements—secure defaults, validated components, and robust monitoring—best captures what defensible architecture entails. Other choices either place performance ahead of security, rely on a single vendor and reduce diversity, or lock down the architecture so tightly that changes and improvements become impractical.

Defensible architecture means building systems that can resist and withstand attacks by starting with secure defaults, using trusted and validated components, and maintaining strong monitoring to detect and respond to incidents. This approach reduces both the likelihood and impact of breaches, supports rapid containment, and makes security properties easier to verify during assessments.

In Annex B contexts, this mindset matters because it emphasizes resilience, defense in depth, and the ability to operate safely even when parts of the environment are attacked or compromised. Secure defaults keep configurations safe out of the box, validated components reduce supply-chain and compatibility risks, and robust monitoring provides early detection, timely response, and forensics data—all aligning with the rigorous requirements typically evaluated in Annex B.

The option describing these elements—secure defaults, validated components, and robust monitoring—best captures what defensible architecture entails. Other choices either place performance ahead of security, rely on a single vendor and reduce diversity, or lock down the architecture so tightly that changes and improvements become impractical.

More Multiple Choice Questions
Subscribe

Get the latest from Passetra

You can unsubscribe at any time. Read our privacy policy