Exam CY0-001 Topic 1 Question 58 Discussion

Actual exam question for CompTIA's CY0-001 exam
Question #: 58
Topic #: 1
SIMULATION
Instructions
Click the (+) to assign each threat category into its appropriate framework.
If at any time you would like to bring back the initial state of the simulation, please click the Reset All button.
An architect is modeling an agentic system to meet security standards.

Suggested Answer:


Explanation:
MAESTRO: Overreliance, Insecure plug-in design
OWASP Top 10: Broken access control, Identification and authentication failures OWASP Top 10 LLM: Prompt injection, Model denial of service STRIDE: Elevation of privilege, Repudiation, Supply chain vulnerabilities, Insecure design MAESTRO addresses AI-specific misuse such as excessive trust in outputs (overreliance) and unsafe plug-in design.
OWASP Top 10 maps to classic web threats: broken access control and authentication failures are key risks.
OWASP Top 10 LLM focuses on LLM-related threats like prompt injection and denial of service targeting the model.
STRIDE categories cover privilege escalation, repudiation (denying actions), supply chain risks, and insecure design flaws.

by Marguerite at Jul 11, 2026, 03:42 AM

Comments

Chosen Answer:
This is a voting comment (?) , you can switch to a simple comment.
Switch to a voting comment New
Nick name: Submit Cancel
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

0
0
0
10