An organization is moving its intellectual property data from on premises to a CSP and wants to secure the data from theft. Which of the following can be used to mitigate this risk?
A.
An additional layer of encryption
B.
A third-party, data integrity monitoring solution
C.
A complete backup that is created before moving the data
D.
Additional application firewall rules specific to the migration
o An additional layer of encryption is the best option to mitigate the risk of intellectual property theft when moving data to a Cloud Service Provider (CSP) because it adds another layer of security to protect sensitive information from unauthorized access.
Encryption: Encrypting data means transforming it into a scrambled code that can only be deciphered with a specific decryption key, making it unreadable to unauthorized parties.
Additional layer: Adding an extra layer of encryption on top of existing security measures within the CSP further enhances data protection.
Focus on detection: While data integrity monitoring can detect changes to data after it has been encrypted, it may not prevent the initial theft of the unencrypted data during the migration process.
The answer is D.
The question asks to prevent theft, not to make data that was stolen useless. A poor question that tests reading comprehension, but not security.
Just a question...if the mitigation request is for theft, why is D not a consideration? I understand what POWNED said about B and the data integrity, but the way I read it, access to steal the data is different from access to read the data. A and B prevent the data from being accessed, but not stolen. C seems like a wasted option.
From an online search:
File Integrity Monitoring is a crucial tool for protecting sensitive data from cyber threats. By monitoring changes to files and alerting administrators to unauthorized changes, FIM can prevent cyber criminals from stealing or manipulating data.
Still having difficulty seeing how it prevents theft, but seems like that is the answer...
Encryption is the way to go. Data integrity is about the reliability of the data, not it being stolen. Ensuring the data is sufficiently encrypted means it should be inaccessible even if you miss something and some of the data gets out.
Your going to want to use a CASB, in other words B. Sucks that these last 100+ questions have little comments, and people commenting that do not know what they are talking about.
"Data integrity is often required by laws and regulations, such as HIPAA and GDPR, to protect sensitive information and prevent unauthorized access or manipulation of data."
When data is being migrated from on-premises to Cloud, It should be encrypted .
upvoted 4 times
...
This section is not available anymore. Please use the main Exam Page.CAS-004 Exam Questions
Log in to ExamTopics
Sign in:
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
OneSaint
Highly Voted 2 years, 2 months agoSteel16
Most Recent 2 months agoa18733c
5 months, 1 week agoSangSang
10 months, 2 weeks agoBlingy
1 year, 2 months agoCraZee
1 year, 3 months agoCraZee
1 year, 3 months agoThatGuyOverThere
1 year, 6 months agoPOWNED
1 year, 6 months agoFragmenttt
1 year, 6 months agoPOWNED
1 year, 6 months agoPOWNED
1 year, 6 months agoLuxury
1 year, 6 months agoOneSaint
2 years, 2 months ago