A company has a proprietary device that requires access to the network be disabled. Only authorized users should have access to the device. To further protect the
device from unauthorized access, which of the following would also need to be implemented?
A.
Install NIPS within the company to protect all assets.
B.
Block port 80 and 443 on the firewall.
C.
Install a cable lock to prevent theft of the device.
D.
Install software to encrypt access to the hard drive.
The question and the answer are looking at two different things, I thought “D” was the answer, somehow its C? Take a look
“To further protect the
device from unauthorized access”
and
“Install a cable lock to prevent theft of the device”
0
0
I agree, D
1
0
what else “would also need to be implemented?” to secure the device. The cable lock .
0
0
I think the answer is D
The question asked “To further protect the
device from unauthorized access”
A cable lock prevent theft of the system but will not prevent unauthorized access.
0
0
I agree D
Cable lock prevent theft, but unauthorized user can still access the device at the location even if cable locked
0
0
I would have said D yet all sites point to C…I am finding odd and unexpected answers throughout this exam.
0
0
the device may not have a hard drive
0
0
I think the question may be worded differently in the exam. As it stands the answer has to be D. As others have said, a cable lock is not going to stop access.
0
0
The word that has me really hung up is ‘should’. Only authorized users should have access. To me, if someone told me that I would question: ‘Well, do unauthorized users have access?’ I think there is a difference between saying that and ‘Only authorized users has access’. Also the way I read the question we are protecting accessing the device not the data. A good argument probably could be made for both C and D. I would probably go with C though.
1
0
The key word is “access”. C is wrong in my opinion
0
0