A corporation implements a mobile device policy on smartphones that utilizes a white list for
allowed applications. Recently, the security administrator notices that a consumer cloud based
storage application has been added to the mobile device white list. Which of the following security
implications should the security administrator cite when recommending the application’s removal
from the white list?

A.
Consumer cloud storage systems retain local copies of each file on the smartphone, as well as
in the cloud, causing a potential data breach if the phone is lost or stolen.

B.
Smartphones can export sensitive data or import harmful data with this application causing the
potential for DLP or malware issues.

C.
Consumer cloud storage systems could allow users to download applications to the
smartphone. Installing applications this way would circumvent the application white list.

D.
Smartphones using consumer cloud storage are more likely to have sensitive data remnants on
them when they are repurposed.