CompTIA Security Plus Mock Test Q283

A customer service department has a business need to send high volumes of confidential information to customers electronically. All emails go through a DLP scanner. Which of the following is the BEST solution to meet the business needs and protect confidential information?

A.
Automatically encrypt impacted outgoing emails
B. Automatically encrypt impacted incoming emails
C. Monitor impacted outgoing emails
D. Prevent impacted outgoing emails


Correct Answer: A
Section: Compliance and Operational Security

Explanation:
Encryption is done to protect confidentiality and integrity of data. It also provides authentication, nonrepudiation and access control to the data. Since all emails go through a DLP scanner and it is outgoing main that requires protection then the best option is to put a system in place that will encrypt the outgoing emails automatically.

Incorrect Answers:
B: Incoming email is not the issue at hand. The outgoing email is the confidential information being sent that requires protection.
C: Monitoring outgoing mail is already being done by the DLP system in place.
D: You cannot prevent these emails from being sent out as it is part of the business procedure.

References:
Dulaney, Emmett and Chuck Eastton, CompTIA Security+ Study Guide, 6th Edition, Sybex, Indianapolis, 2014, p. 248