Which of the following is the MOST effective control for protecting the confidentiality and integrity of data stored unencrypted on virtual machines?
Which of the following is the MOST effective control for protecting the confidentiality and integrity of data stored unencrypted on virtual machines?
The most effective control for protecting the confidentiality and integrity of data stored unencrypted on virtual machines is to restrict access to images and snapshots of virtual machines. Limiting access ensures that only authorized personnel can interact with these resources, thereby minimizing the risk of unauthorized data exposure or tampering. While monitoring access can be useful, it is primarily a detective control rather than a preventive one. Regular reviews of logical access controls and limiting the creation of images are important but do not directly address the core issue of access control as comprehensively as restricting access.
I think answer is B as it's talking about the most
Again a misleading answer. Correct answer is B.
answer is B
While limiting the creation of virtual machine images and snapshots (option D) may also help mitigate risks associated with data stored on virtual machines, it may not be as effective as restricting access to existing images and snapshots, particularly if unauthorized individuals already have access to these resources. Therefore, restricting access to images and snapshots of virtual machines is likely the MOST effective control for protecting the confidentiality and integrity of data stored unencrypted on virtual machines.
B is correct.
A, Virtual Machines are used in staging or testing environment, Therefore, you cannot restrict access to the Data, hence monitoring is the correct answer