Which of the following represents the BEST option for addressing this concern?

An incident response team is concerned with verifying the integrity of security information and event management (SIEM) events after being written to disk.

Which of the following represents the BEST option for addressing this concern?
A . Time synchronization
B. Log hashing
C. Source validation
D. Field name consistency

Answer: A

Explanation:

Reference: https://nvlpubs.nist.gov/nistpubs/Legacy/SP/nistspecialpublication800-92.pdf

Latest CFR-410 Dumps Valid Version with 100 Q&As

Latest And Valid Q&A | Instant Download | Once Fail, Full Refund

Leave a Reply

Your email address will not be published. Required fields are marked *

You may use these HTML tags and attributes: <a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <s> <strike> <strong>