CompTIA Security Plus Mock Test Q282

Which of the following is a Data Loss Prevention (DLP) strategy and is MOST useful for securing data in use?

A. Email scanning
B. Content discovery
C. Database fingerprinting
D. Endpoint protection


Correct Answer: D
Section: Compliance and Operational Security

Explanation:
Data loss prevention (DLP) systems monitor the contents of systems (workstations, servers, and networks) to make sure that key content is not deleted or removed. They also monitor who is using the data (looking for unauthorized access) and transmitting the data. DLP systems share commonality with network intrusion prevention systems. Endpoint protection provides security and management over both physical and virtual environments.

Incorrect Answers:
A: Email scanning would only be providing security over one aspect of data protection.
B: Content discovery is mainly useful for social marketing campaigns to drive more traffic to your websites.
C: Database fingerprinting refers mainly to classifying data.

References:
Dulaney, Emmett and Chuck Eastton, CompTIA Security+ Study Guide, 6th Edition, Sybex, Indianapolis, 2014, p. 10
http://www.websense.com/content/support/library/data/v76/help/Fingerprinting%20DB.aspx