which Joe should collect the data?

seenagapeOctober 27, 2017

A member of a digital forensics team, Joe arrives at a crime scene and is preparing to collect system data.
Before powering the system off, Joe knows that he must collect the most volatile date first. Which of the
following is the correct order in which Joe should collect the data?

A.
CPU cache, paging/swap files, RAM, remote logging data

B.
RAM, CPU cache. Remote logging data, paging/swap files

C.
Paging/swap files, CPU cache, RAM, remote logging data

D.
CPU cache, RAM, paging/swap files, remote logging data

One Comment on “which Joe should collect the data?”

Alex says:

November 4, 2017 at 10:36 am

Answer is D. This is text from Darril’s book:
“The order of volatility for data from most volatile to least volatile is
cache memory, regular RAM, swap or paging file, hard drive data,
logs stored on remote systems, and archived media.”

31

100

Log in to Reply

Get 50% Discount on All Your Purchases
at PrepAway.com - Latest Exam Questions

This is ONE TIME OFFER

Enter your email address to receive your 50% off dicount code:

SPECIAL OFFER: GET 50% OFF

Use Discount Code:

CompTIA Exam Questions

Free CompTIA Study Guide

which Joe should collect the data?

One Comment on “which Joe should collect the data?”

Leave a Reply Cancel reply