1Y0-312 Exam QuestionsBrowse all questions from this exam
Go to Exam

1Y0-312 Exam - Question 7

Scenario: A newly created Citrix Virtual Apps and Desktops site has sensitive information. The users consistently use different browsers for their daily tasks. A

Citrix Engineer is looking for ways to minimize attacks like ransomware, phishing, and session hijacking.

Which two steps can the engineer take to minimize attacks without interfering with user productivity? (Choose two.)

Show Answer
Correct Answer: BCD

To minimize attacks like ransomware, phishing, and session hijacking without interfering with user productivity, the engineer can implement HTTP Strict Transport Security (HSTS) and use HTTP response headers to send security policies to endpoint browsers. HSTS ensures that browsers connect to websites over HTTPS, which secures the communication and prevents certain types of attacks. Using HTTP response headers to send security policies helps enforce security measures directly on the user's browser, providing additional protection without requiring changes to the user's behavior or disabling any essential functionality.

Discussion

10 comments
Sign in to comment
PandiyanROptions: CD
Feb 8, 2021

Seems it should be C and D • Use HTTPS for access to external web sites, especially if sensitive data will be transmitted. HTTP Strict Transport Security (HSTS) can be optionally implemented by web applications to prevent the use of HTTP for the web connection by using a special response header. • HTTP response headers can be used to send security policies to an endpoint’s browser, ultimately ensuring a more secure connection.

Pinball2020
Oct 6, 2020

shouldn't this be B&C?

BeatOn
Oct 25, 2020

I Don't think that HSTS is on Exam scope

BeatOn
Oct 25, 2020

Maybe it's really B+C

ShekharctxOptions: CD
Jul 21, 2021

C & D are correct answer

mco_wOptions: BC
Dec 21, 2020

It should be B & C. HTTP Strict Transport Security (HSTS) can be optionally implemented by web applications to prevent the use of HTTP for the web connection by using a special response header. Source: CWS-315-2I-en-StudentManual-1-3-days-v02 - Page 246

Shekharctx
Jul 21, 2021

I agree. B&C

Tripp_FOptions: CD
Aug 3, 2021

I believe this one should be C and D. While disabling user plugins would be good from a security standpoint, it doesn't meet the constraints of the question (minimize attacks *without interfering with user productivity*).

WardiOptions: CD
Feb 21, 2022

I go for C and D as A and B restrict the users productivity.

hawkensOptions: AB
Apr 11, 2023

C&D are both NetScaler settings. I assume this is a CVAD environment, so the answer should be A&B

ArtCOptions: BC
Dec 6, 2020

Definitely B C makes sense: https://cheatsheetseries.owasp.org/cheatsheets/HTTP_Strict_Transport_Security_Cheat_Sheet.html

lgr001Options: CD
Jan 25, 2023

C D are correct

NSLove
Feb 15, 2024

HSTS do not help the client security in terms of pishing, ransomware. B is OK