CompTIA Updated CY0-001 Exam Questions and Answers by thalia

Basic Concept: The relationship between AI system capabilities and security risk is a fundamental concept in AI governance. As AI models gain more functionality and capabilities, their potential for misuse, unintended consequences, and attack surface expansion grows proportionally. CompTIA SecAI+ Study Guide addresses capability-risk proportionality under AI governance.

Why D is Correct: The risks of a generative AI product are proportional to its capabilities. Each new feature expands what the model can do, which simultaneously expands what adversaries can manipulate it to do, what sensitive operations it can be directed to perform, and what unintended harm it can cause. A model that can generate text, images, execute code, and call external APIs has dramatically greater risk potential than one that can only generate text. Risk grows with capability scope.

Why A is Wrong: Risks do not remain constant when new features are added. New features introduce new attack vectors, expand the model ' s action space, and create new opportunities for misuse. Each addition fundamentally changes the system ' s risk profile.

Why B is Wrong: While risks do increase with new features, saying they simply increase does not capture the precise relationship. The increase is proportional to the nature and scope of the capabilities added, not a uniform increment for any feature addition.

Why C is Wrong: While risks can be measured qualitatively, stating that risks are measured qualitatively is a statement about measurement methodology rather than an explanation of how risks change when functionality is enabled. It does not accurately describe the relationship between capability and risk.

Basic Concept: Input manipulation attacks — including adversarial examples and prompt injection — alter inputs to cause AI systems to produce unintended, harmful, or inappropriate outputs. Defending against these attacks requires mechanisms that validate and constrain both inputs and outputs at runtime. CompTIA SecAI+ Study Guide identifies guardrails as the primary defense against input manipulation in AI systems.

Why D is Correct: Guardrails implement real-time validation and filtering of both incoming inputs and outgoing recommendations. They detect manipulated inputs that deviate from expected patterns, enforce content policies on outputs, and prevent the system from producing inappropriate recommendations regardless of how cleverly the input was crafted. Guardrails provide the most comprehensive and directly applicable defense against the described manipulation attack scenario.

Why A is Wrong: Cross-validation is a model evaluation technique that assesses how well a model generalizes to independent datasets during training. It measures predictive performance but does not provide runtime protection against input manipulation attacks on a deployed system.

Why B is Wrong: Feature regularization is a training technique that adds penalties to model weights to prevent overfitting. It improves generalization during training but does not inspect or validate inputs at inference time to detect manipulation.

Why C is Wrong: Feature scaling normalizes input feature values to a standard range for training efficiency. Like regularization, it is a preprocessing and training step that has no effect on defending against runtime input manipulation attacks on deployed systems.

Basic Concept: Neural networks can be trained to identify and match complex multi-point patterns in data. For biometric authentication, facial recognition uses deep neural networks to extract and compare dozens to hundreds of facial feature points from an input image. CompTIA SecAI+ covers neural network-based authentication under basic AI concepts.

Why A is Correct: Facial recognition systems use neural networks specifically trained to identify multiple facial landmarks and feature points such as eye distance, nose shape, and jawline contour from input images. These extracted feature vectors are compared against stored templates to authenticate individuals, making this the ideal example of multi-point neural network-based authentication output.

Why B is Wrong: An encryption key is a cryptographic artifact, not an AI model output. Encryption keys are generated mathematically, not through neural network training or multi-point feature identification from biometric inputs.

Why C is Wrong: OAuth is an open authorization protocol framework that handles delegated access and permission grants between services. It is an authentication delegation standard, not an AI model that processes input through neural networks.

Why D is Wrong: A bounding box is an output of object detection models that draws a rectangular box around detected objects in an image. While it uses neural networks, it identifies object location rather than multiple feature points for authentication purposes.

Basic Concept: Before deploying AI applications that handle customer data in trials, protecting sensitive information through data masking and sanitization is essential. CompTIA SecAI+ Study Guide emphasizes pre-deployment data security controls as a critical step in the AI development lifecycle.

Why A is Correct: Data masking replaces sensitive real customer data with realistic but fictitious equivalents, while sanitization removes harmful or unwanted data elements. Before customer trials, these techniques prevent exposure of real PII or sensitive information, ensure the trial environment cannot leak production data, and protect the organization from privacy regulation violations. This is the most immediately actionable pre-trial security control.

Why B is Wrong: External compliance audits are formal processes typically conducted post-deployment or at planned intervals to verify regulatory compliance. They are not pre-trial security implementations and cannot prevent data exposure in a trial environment.

Why C is Wrong: Approved AI vendor lists are governance artifacts that manage vendor selection risk at the procurement stage. They do not directly protect customer data within an application being prepared for trials.

Why D is Wrong: Third-party risk management addresses risks from external vendors and partners at a strategic level. While important for overall governance, it does not constitute a direct data security control for a pre-trial release.