A company is preparing to decommission an offline, non-networked root certificate server.
Before sending the server’s drives to be destroyed by a contracted company, the Chief
Security Officer (CSO) wants to be certain that the data will not be accessed. Which of the
following, if implemented, would BEST reassure the CSO? (Select TWO).
A.
Disk hashing procedures
B.
Full disk encryption
C.
Data retention policies
D.
Disk wiping procedures
E.
Removable media encryption
“Disk wiping procedures” I understand.
“Full disk encryption” would have been good while the server was still online, or as it was being built. But running full disk encryption just before a secure wipe is a waste of time, it does not make the data any harder to recover.
If the question was phrased as past tense, eg “What 2 items, if in place, would have made this drive the most secure” then the answer would be clearly wiping and encryption.
That’s my 2 cents anyway..
0
0
I have to agree with PeterPan on this. A proper procedure will include multi-pass wiping so there’s no reason to encrypt data that is going to be deleted anyway.
0
0
Agreed, the phrasing isn’t the best. BUT if I were CEO, I’d be most reassured by 1) wiping procedures, which should make the data unavailable and 2) encryption, for if data is still captured somehow. I got it right thinking this way.
0
0
I think the wording is irrelavent here. The question is CLEARLY tells you to PICK 2 out of the 5 choices…given the choices there ARE ONLY 2 that make sense when dealing with a HARD DRIVE that was removed.
0
0
I agree with Louis R. You can get the correct answer by process of elimination.
0
0