A company has implemented a requirement to encrypt all the hard drives on its servers as part of a data loss prevention strategy. Which of the following should the company also perform as a data loss prevention method?
A company has implemented a requirement to encrypt all the hard drives on its servers as part of a data loss prevention strategy. Which of the following should the company also perform as a data loss prevention method?
If a company has implemented encryption for hard drives on its servers as part of a data loss prevention strategy, one logical additional step would be to ensure all network traffic is encrypted as well. This ensures that data is protected not only at rest but also while in transit, reducing the risk of data interception and loss during communication between devices or over the internet. Encrypting network traffic complements the overall data protection strategy by covering another potential vulnerable point where data could be compromised.
There are two different times when data encryption protects information: when the data is in transit across the network or at rest on the drive. The Official CompTIA Server+ Study Guide (Exam SK0-005) page 214. You have implemented "Data at rest" and then you should do "Data in transit".
I think the correct answer might be A or C. If data is to be encrypted at rest, it probably should be encrypted at rest as well. Or you might block USB drives to avoid data being exfiltrated. Even if the USB drives are encrypted they still represent a risk because data could be efiltrated via USB drive
I agree with you. I'd probably go with C.
dnc1981 has it partially correct, i.e., data is already encrypted at rest, but it should be encrypted "in motion" as well, ergo the answer IMO is "A".
I will go with C
This exact question is on my Udemy practice test and the answer listed is B "Implement MFA on all the servers with encrypted data".
B is correct because MFA is the next step to prevent data loss Prevention.
We're looking at Data Loss Prevention here - which is "removing" data from where it is supposed to stay, not accessing data when we are not supposed to - Blocking USB media (Flash drives, thumb drives, external hard drives, etc) would prevent copying ("removing") data from the network.
bbbbbbbbbbbbbbbb
Reviewed answers again and took back my last answer (C) Answer seems to be A. The company encrypted data "at rest", so they need to encrypt data "in transit".
I think C is correct.
Another BS CompTIA question....
https://quizlet.com/866168501/sk0-005-server-dump-part-1-flash-cards/
no aaaa corrcet
I believe D is it. Of the options, this is the only one that strikes me as a method. Study up the differences in strategy vs method
I wouldn't choose 'A' because not all network traffic needs to be encrypted, Client-Client or Traffic over the internet encryption seems wild. No need for 'B' since it is already encrypted. 'C'... If you do that then no USBs are usable and that's needed for a lot of things. Which leaves 'D' to be the most logical answer.
You should not have physical access to the ports so I would look at data in motion (network traffic)
Wouldnt Port Security be considered Technical rather than Preventative? The question itself says 'encrypt data at rest as a preventative' why wouldnt encrypt data in transit be considered a preventative??