CompTIA Security Plus Mock Test Q281

The Chief Information Officer (CIO) is concerned with moving an application to a SaaS cloud provider. Which of the following can be implemented to provide for data confidentiality assurance during and after the migration to the cloud?

A. HPM technology
B. Full disk encryption
C. DLP policy
D. TPM technology


Correct Answer: C
Section: Compliance and Operational Security

Explanation:
Data loss prevention (DLP) systems monitor the contents of systems (workstations, servers, and networks) to make sure that key content is not deleted or removed. They also monitor who is using the data (looking for unauthorized access) and transmitting the data. The Software as a Service (SaaS) applications are remotely run over the Web and as such requires DLP monitoring.

Incorrect Answers:
A: HPM is an acronym for home protection methods.
B: Full Disk encryption is hardware-based – not software based as is the case with the SaaS cloud provider.
D: TPM is hardware technology – not software-based as is the case with the SaaS cloud provider.

References:
Dulaney, Emmett and Chuck Eastton, CompTIA Security+ Study Guide, 6th Edition, Sybex, Indianapolis, 2014, pp. 10, 17