CompTIA Security Plus Mock Test Q317

Ann would like to forward some Personal Identifiable Information to her HR department by email, but she is worried about the confidentiality of the information. Which of the following will accomplish this task securely?

A. Digital Signatures
B. Hashing
C. Secret Key
D. Encryption

Correct Answer: D
Section: Compliance and Operational Security

Explanation:
Encryption is used to prevent unauthorized users from accessing data. Data encryption will support the confidentiality of the email.

Incorrect Answers:
A: A digital signature is similar in function to a standard signature on a document. It validates the integrity of the message and the sender. The message is encrypted using the
encryption system, and a second piece of information, the digital signature, is added to the message.
B: Hashing is used to protect the integrity of the email, meaning that it will not be tampered with, not secure confidentiality.
C: Secret keys are used in encryption. It is also referred to as a symmetric key in cryptography.

References:
Dulaney, Emmett and Chuck Eastton, CompTIA Security+ Study Guide, 6th Edition, Sybex, Indianapolis, 2014, pp. 251-258, 262, 404, 414
http://en.wikipedia.org/wiki/Email_encryption