正解は、A. TLS 1.3 を優先するようにサーバーを設定し、B. CBC を使用する暗号スイートを削除します。
パディングオラクル攻撃は、暗号メッセージのパディング検証を悪用し、鍵を知らなくても暗号文を復号する攻撃の一種です。パディングオラクルとは、メッセージに有効なパディングが含まれているかどうかの問い合わせに応答するシステムであり、例えば、無効なパディングや無効なMACに対して異なるエラーメッセージを返すWebサーバーなどが挙げられます。パディングオラクル攻撃はCBCモードの動作にも適用可能であり、攻撃者は暗号文ブロックを操作し、オラクルの応答を用いて平文を復元することができます12。
この問題を解決するには、組織は次の構成変更を行う必要があります。
* Configure the server to prefer TLS 1.3. TLS 1.3 is the latest version of the Transport Layer Security protocol, which provides secure communication between clients and servers. TLS 1.3 has several security improvements over previous versions, such as:
* It deprecates weak and obsolete cryptographic algorithms, such as RC4, MD5, SHA-1, DES,
3DES, and CBC mode.
* It supports only strong and modern cryptographic algorithms, such as AES-GCM, ChaCha20- Poly1305, and SHA-256/384.
* It reduces the number of round trips required for the handshake protocol, which improves performance and latency.
* It encrypts more parts of the handshake protocol, which enhances privacy and confidentiality.
* It introduces a zero round-trip time (0-RTT) mode, which allows resuming previous sessions without additional round trips.
* It supports forward secrecy by default, which means that compromising the long-term keys does not affect the security of past sessions3456.
* Remove cipher suites that use CBC. Cipher suites are combinations of cryptographic algorithms that specify how TLS connections are secured. Cipher suites that use CBC mode are vulnerable to padding oracle attacks, as well as other attacks such as BEAST and Lucky 13. Therefore, they should be removed from the server's configuration and replaced with cipher suites that use more secure modes of operation, such as GCM or CCM78.
The other options are not effective or necessary to remediate this issue.
Option C is not effective because configuring the server to prefer ephemeral modes for key exchange does not prevent padding oracle attacks. Ephemeral modes for key exchange are methods that generate temporary and random keys for each session, such as Diffie-Hellman or Elliptic Curve Diffie-Hellman. Ephemeral modes provide forward secrecy, which means that compromising the long-term keys does not affect the security of past sessions. However, ephemeral modes do not protect against padding oracle attacks, which exploit the padding validation of the ciphertext rather than the key exchange9.
Option D is not necessary because requiring client browsers to present a user certificate for mutual authentication does not prevent padding oracle attacks. Mutual authentication is a process that verifies the identity of both parties in a communication, such as using certificates or passwords. Mutual authentication enhances security by preventing impersonation or spoofing attacks. However, mutual authentication does not protect against padding oracle attacks, which exploit the padding validation of the ciphertext rather than the authentication.
Option E is not necessary because configuring the server to require HSTS does not prevent padding oracle attacks. HSTS stands for HTTP Strict Transport Security and it is a mechanism that forces browsers to use HTTPS connections instead of HTTP connections when communicating with a web server. HSTS enhances security by preventing downgrade or man-in-the-middle attacks that try to intercept or modify HTTP traffic.
However, HSTS does not protect against padding oracle attacks, which exploit the padding validation of HTTPS traffic rather than the protocol.
Option F is not effective because removing cipher suites that use GCM does not prevent padding oracle attacks. GCM stands for Galois/Counter Mode and it is a mode of operation that provides both encryption and authentication for block ciphers, such as AES. GCM is more secure and efficient than CBC mode, as it prevents various types of attacks, such as padding oracle, BEAST, Lucky 13, and IV reuse attacks. Therefore, removing cipher suites that use GCM would reduce security rather than enhance it .

SLA（サービスレベル契約）は、サービスプロバイダーとその顧客の間で締結される契約であり、プロバイダーが提供するサービス内容と、プロバイダーが遵守すべきサービス基準を文書化したものです。ここで説明したシナリオでは、インシデント対応期限の遅延は、SLA違反の明確な兆候です。SLAでは通常、サービスを測定する指標と、合意されたサービスレベルが達成されなかった場合に適用される救済措置または罰則が規定されています。組織や従業員などがパフォーマンス目標を達成したかどうかを定量的に評価するKPI（主要業績評価指標）や、2者間以上の正式な合意であるMOU（覚書）とは異なり、SLAは提供されるサービスに適用されるパフォーマンスと品質の指標に重点を置いています。
SLO (サービス レベル目標) は SLA に関連し、多くの場合 SLA の一部であり、可用性、スループット、頻度、応答時間、品質などの SLA の特定の測定可能な特性を表します。

Vulnerability 2 should be prioritized as it is exploitable, has high exploit activity, and is exposed externally according to the SMITTEN metric.

セキュリティポリシーに基づき、企業はCVSSv3.1ベーススコアメトリクスを用いてセキュリティ脆弱性の修復を優先順位付けするものとします。オプションCはCVSSv3.1ベーススコアが最も高い9.8であり、これは重大度レベルが「クリティカル」であることを示します。また、企業はシステムとデータの可用性よりもデータの機密性を優先するものとします。オプションCは機密性への影響度が高い（C:H）。さらに、企業は社内で利用可能なシステムへのパッチ適用よりも、公開されているシステムとサービスへのパッチ適用を優先するものとします。オプションCは、公開されているWebサーバーに影響を及ぼします。公式リファレンス：https://www.first.org/cvss/

A new program has been set to execute on system start is the most likely cause of the suspicious activity that is occurring, as it indicates that the malware has modified the registry keys of the system to ensure its persistence. File Integrity Monitoring (FIM) is a tool that monitors changes to files and registry keys on a system and alerts the security analyst of any unauthorized or malicious modifications. The alert triggered by FIM shows that the malware has created a new registry key under the Run subkey, which is used to launch programs automatically when the system starts. The new registry key points to a file named "update.exe" in the Temp folder, which is likely a malicious executable disguised as a legitimate update file. Official References:
https://www.comptia.org/blog/the-new-comptia-cybersecurity-analyst-your-questions-answered
https://partners.comptia.org/docs/default-source/resources/comptia-cysa-cs0-002-exam-objectives
https://www.comptia.org/training/books/cysa-cs0-002-study-guide