Question 13 - CompTIA SecAI+ CY0-001 Exam Questions [April 2026 Update]

Q: 13

Several core activities deﬁne the eeicacy of AI-facilitated threat modeling within an enterprise environment. Consider the following tasks:

I. Automated identiﬁcation of trust boundaries. II. Generation of attack trees based on architectural inputs. III. Real-time patching of bueer overﬂow vulnerabilities. IV. Prioritization of threats using established frameworks like DREAD. Which of these tasks can be eeectively facilitated by current AI-enabled threat modeling tools?

Options

Correct Answer:

Explanation

AI-enabled threat modeling tools leverage machine learning to automate and enhance the process of identifying and analyzing security threats. They can analyze architectural diagrams and code to automatically identify trust boundaries (I). They excel at generating potential attack paths and representing them as attack trees (II) by using vast knowledge bases of vulnerabilities and tactics. AI is also effective at processing threat data to prioritize risks using frameworks like DREAD or STRIDE (IV). However, real-time patching of vulnerabilities (III) is a remediation or vulnerability management function, which occurs after threat modeling and is distinct from it.

Why Incorrect

A: This option incorrectly includes real-time patching (III), which is a remediation task, not a threat modeling activity.

C: This option incorrectly includes real-time patching (III). Threat modeling is about identifying and analyzing threats, not actively fixing them.

D: This option incorrectly excludes the automated identification of trust boundaries (I), which is a key capability of modern AI-driven security analysis tools.

References

1. Shostack, A. (2014). Threat Modeling: Designing for Security. Wiley. Chapter 3 discusses the core steps of threat modeling, which include identifying assets, threats, and vulnerabilities, but not real-time patching.

2. Shevchenko, N., et al. (2018). Tool-assisted Attack Tree Generation and Analysis. In 2018 IEEE European Symposium on Security and Privacy Workshops (EuroS&PW). This paper discusses the automation of attack tree generation, a task where AI is now being applied (Statement II). DOI: 10.1109/EuroSPW.2018.00019.

3. Microsoft Security. (2023, November 15). Introducing Microsoft Security Copilot. Microsoft's documentation describes using generative AI to summarize threats, analyze attack chains, and assist in incident response, which aligns with identification (I), generation (II), and prioritization (IV).

4. UcedaVelez, T., & Morana, M. M. (2015). Risk Centric Threat Modeling: Process for Attack Simulation and Threat Analysis. Syngress. This book details threat prioritization using frameworks like DREAD, a process that can be significantly accelerated by AI (Statement IV).

Premium Access Includes

FLASH OFFER

avail 10% DISCOUNT on YOUR PURCHASE