Legal Authorization — CompTIA PenTest+ (PT0-002) Practice Questions
Legal authorization is the documented permission a penetration tester must obtain before engaging any target system, typically formalized through a statement of work, master service agreement, or written authorization letter. Without proper legal authorization, accessing computer systems constitutes unauthorized access under laws such as the Computer Fraud and Abuse Act (CFAA) regardless of intent. The PT0-002 exam requires candidates to understand the types of authorization documents, what must be included in them, and the legal frameworks that govern testing in different jurisdictions.
Free questions on legal authorization
What is the purpose of a rules of engagement (RoE) document?
Free question · easy · full answer + explanation
More legal authorization questions in the full bank
- A client verbally approves testing beyond the written scope. What should you do? Unlock answer & explanation →
- What is the purpose of a 'point-in-time' clause in a Rules of Engagement? Unlock answer & explanation →
- Which of the following is NOT a component of a signed Rules of Engagement (RoE)? Unlock answer & explanation →