Free CompTIA SecurityX / CASP+ CAS-005 Actual Exam Questions - Question 3 Discussion
Question No. 3
[Security Engineering and Cryptography]
A developer needs toimprove the cryptographic strength of a password-storage component in a web
application without completely replacing the crypto-module. Which of the following is the most
appropriate technique?
A developer needs toimprove the cryptographic strength of a password-storage component in a web
application without completely replacing the crypto-module. Which of the following is the most
appropriate technique?
Select one option, then reveal solution.
US
HV
Hassan V.
2026-02-18
Makes sense to rule out key rotation (C) here since it’s about changing keys over time, not directly strengthening stored passwords. E still feels like the best pick.
0
ST
Shoaib T.
2026-01-16
E/D? Key stretching (E) is known to strengthen password security by making brute-force attacks harder without changing the whole system. But key encryption (D) can protect keys better too. Still, stretching passwords sounds more direct here.
0