CompTIA Cloud+ Practice Test

In an IaaS environment, where should a security team deploy updated malware signature files?

• A. IDS
• B. Spam filter
• C. WAF
• D. NIPS
• E. HIPS

The correct answer is: WAF

In an Infrastructure as a Service (IaaS) environment, deploying updated malware signature files in a Web Application Firewall (WAF) enhances security by actively protecting web applications from common issues, including SQL injection and cross-site scripting, which are often used to deliver malware. While a WAF is primarily focused on monitoring and filtering HTTP traffic to and from a web application, integrating updated malware signatures allows it to recognize and block known malicious file types or payloads that could exploit vulnerabilities in web applications. The other options serve different security purposes: - An Intrusion Detection System (IDS) monitors network traffic for suspicious activity but does not actively block threats. - A spam filter is more about email security and manages unsolicited and potentially harmful emails instead of broader malware protection. - A Network Intrusion Prevention System (NIPS) also focuses on network traffic but typically does not target web application vulnerabilities as directly as a WAF. - Host Intrusion Prevention Systems (HIPS) provide endpoint security by protecting individual systems rather than focusing specifically on applications hosted on the web. Thus, deploying updated malware signatures in a WAF is particularly effective in safeguarding against web-based attacks and ensuring that the web applications remain secured against known malware threats.