PrepAway - Latest Free Exam Questions & Answers

Which of the following is the BEST solution to mitigate unintentional exposure of confidential information?

Several departments within a company have a business need to send high volumes of confidential
information to customers via email. Which of the following is the BEST solution to mitigate unintentional
exposure of confidential information?

PrepAway - Latest Free Exam Questions & Answers

A.
Employ encryption on all outbound emails containing confidential information.

B.
Employ exact data matching and prevent inbound emails with Data Loss Prevention.

C.
Employ hashing on all outbound emails containing confidential information.

D.
Employ exact data matching and encrypt inbound e-mails with Data Loss Prevention.

Explanation:
Encryption is used to ensure the confidentiality of information and in this case the outbound email that
contains the confidential information should be encrypted.
Incorrect Answers:
B: DLP system should be set to monitor the outbound emails not the inbound email since the company
will be sending out confidential email.
C: Hashing refers to the hash algorithms used in cryptography. It is used to store data, such as hash
tables.
D: Encrypting inbound email would be futile if the data protection should be carried out on outbound
email.

Dulaney, Emmett and Chuck Eastton, CompTIA Security+ Study Guide, 6th Edition, Sybex, Indianapolis,
2014, pp. 236, 255, 291

One Comment on “Which of the following is the BEST solution to mitigate unintentional exposure of confidential information?

  1. meac says:

    Without having to resort to long and complicated explanations, lets first take a look at the Key words: SEND (outbound) and Encryption.

    This eliminates:
    **B-Employ exact data matching and prevent inbound emails with Data Loss Prevention. — This in an INBOUND MOTION
    — If we prevent inbound emails, we shall get nothing

    **D. Employ exact data matching and encrypt inbound e-mails with Data Loss prevention.
    — This in an INBOUND MOTION
    — We do not want to encrypt in bound emails. They could have arrived encrypted already, or not encrypted. So once it arrives, we want to make sure that they are decryoted

    So it is a tossup betweern A and C

    Now let’s take a look at the two answers remaining
    **A-Employ encryption on all outbound emails containing confidential information.

    **C-Employ hashing on all outbound emails containing confidential information.
    Hashing all outbound emails does not secure its content. It just confirms the authenticity of origin




    0



    0

Leave a Reply