Exam N10-008 topic 1 question 369 discussion

I believe the answer would be D. I don't think factory reset is in reference to Remote Wipe which would be the obvious answer. However with 2FA, brute forcing into the phone would be impossible. Making access to the data impossible depending on what aspects the 2FA uses. It could also be encryption but in my mind if someone can brute force the password the encryption is useless as all of the data will be available in Plaintext form. Correct me if I'm wrong please, this is just my methodology.

Undoubtedly the most quintessentially CompTIA question in this dump, possibly of all time. A multiple choice question with the option of four different correct answers. A. Should absolutely take place in this event via a remote wipe. B. Auto lock is the most ubiquitously enabled security measure listed and should always be enabled. C. The answer I believe they want, grammatically, it can be enabled so it beats A, it appears in the CompTIA Network+ Exam Objectives so it beats B. D. All that leaves is D, which should also be enabled where possible, however, generally people use their phones for MFA. Whenever you need to deal with 2FA, you go to your phone to do that. How can you use 2FA to access your "cell phone" if it is your phone that has Google authenticator on it for instance. It is possible but just weird, uncommon and not nearly as applicable as encryption.

passcodes encrypt the devices data by design

I would agree also with C here based on how the actual question is phrased.

Awful question. I feel like literally all answers except Factory Reset are correct because FR is not something that should be enabled, rather an action that should be taken. All other options are correct because: B. Autolock would increase the chaces that even if the phone was unlocked when it was stolen, it would relock if it wasn't interated with in a given amount of seconds C. Encryption would ensure even if the phone is somehow accessed, information would not be readable unless they also crack whatever encryption key is used. So it "should" be enabled. D. TFA would ensure that even if the thieve has the password, an additional layer of protection such as biometric lock would prevent him from getting into the phone. I'm praying some of these questions are fake or multiple choice. There's a difference between hard questions and questions with multiple right answers.

Factory reset would be the way to go to scramble & wipe the data anew, but if encryption is an option, then it is a good alternative to use if you can get the phone back, or may have just misplaced your phone. Really depends on if you have backups of data & how your phone was lost in this situation.

C. Encryption: Encryption is a crucial security measure that scrambles the data on the device, rendering it unreadable without the correct decryption key. If encryption is enabled on the device, even if someone gains physical access to the phone, the stored information remains protected and inaccessible.

Encryption should also be enabled. Encryption is a process that converts sensitive information into an unreadable format, which can only be accessed with a decryption key. In the event of a device being stolen, encryption can help protect the sensitive data from unauthorized access. Without encryption, a thief may be able to access the data stored on the phone by bypassing the passcode or removing the device's memory card.

The question is asking what else should be ENABLED, not what should be done. So, I believe the best answer is C.

A. Factory reset If it has a passcode it will autolock on it's own and most smartphones are already encrypted. The ENABLED part is the red herring but if a phone is stolen and has sensitive info it should be remote wiped.

A is the answer in the event the phone is stolen

A How do I factory reset my stolen iPhone without the password? If you can't remember your passcode when you try again, use a computer to put your iPhone in recovery mode. Recovery mode allows you to erase the iPhone, giving you access to set it up again. After you erase your iPhone, you can restore your data and settings from a backup.

C. Encryption should also be enabled. Encryption is the process of encoding information so that it can only be read by authorized parties. Enabling encryption on the stolen cell phone will help to ensure that the sensitive information stored on it remains secure and cannot be accessed by unauthorized individuals even if the passcode is bypassed or hacked.

B. Autolock. It doesn't make sense in real world, but in hypothetical compTIA world this is something that you need to have "enabled" for passcode to make sense.

Here's my thinking, and I have to admit that I am biased considering that I have already taken and passed my CompTIA A+ exams. Answers A, B, and D are all incorrect because anyone can just unscrew the phone case, take out the hard drive, then read the hard drive using data extraction tools (or even another phone). Answer C prevents that, but as max319 said, brute-forcing the password is possible if you do not have 2FA. Also, autolock would lock the phone if too many incorrect passwords/guesses were made. Honestly, this is such a bad question. You would enable all of them to prevent data loss, but for the question at hand, I'll probably answer C on the exam.

The cell phone has a passcode - want else should be enabled (to increase protection for the data stored on the phone)? Encryption makes most sense indeed.

This is going to be a) a factory reset.