Which of the following hardware based encryption devices is used as a part of multi-factor authentication to access a secured computing system?

A.
Database encryption

B.
USB encryption

C.
Whole disk encryption

D.
TPM

Explanation:
Trusted Platform Module (TPM) is a hardware-based encryption solution that is embedded in the system’s motherboard and is enabled or disable in BIOS. It helps
with hash key generation and stores cryptographic keys, passwords, or certificates.
Incorrect Answers:
A: Database encryption makes use of cryptography functions that are built into the database software to encrypt the data stored in the data base. Encryption
protects data on storage devices it is not an authentication mechanism.
B: USB encryption is provided by the vendor of the USB device or by a tool from a third party. Encrypting the data on a USB protects the data on the USB; it is not
an authentication mechanism.
C: Whole disk encryption protects the data on hard drives of devices it is not an authentication mechanism.

Dulaney, Emmett and Chuck Eastton, CompTIA Security+ Study Guide, Sixth Edition, Sybex, Indianapolis, 2014, pp 237
Stewart, James Michael, CompTIA Security+ Review Guide, Sybex, Indianapolis, 2014, pp 252,