CompTIA Security Plus Mock Test Q278

Which of the following controls would prevent an employee from emailing unencrypted information to their personal email account over the corporate network?

A. DLP
B. CRL
C. TPM
D. HSM


Correct Answer: A
Section: Compliance and Operational Security

Explanation:
Data loss prevention (DLP) systems monitor the contents of systems (workstations, servers, and networks) to make sure that key content is not deleted or removed. They also monitor who is using the data (looking for unauthorized access) and transmitting the data.

Incorrect Answers:
B: A certificate revocation list is used to revoke a certificate or key. This means that a specific CA state should no longer be used.
C: TPM is used to assist with hash key generation. This will enhance security, but a DLP control would better serve the needs of the company in this instance.
D: HSM is also a crypto-processor which is used with PKI systems.

References:
Dulaney, Emmett and Chuck Eastton, CompTIA Security+ Study Guide, 6th Edition, Sybex, Indianapolis, 2014, pp. 10, 262, 290