You create Web-based client applications. You review an application that manages the medical information of patients. The information is confidential and needs to be stored by using the most secure method available.
The application encrypts patient data and stores it in database tables. The application stores a document or image that is related to a patient in the following manner:
The name of the item is stored in the database.
The physical document or image is stored in the local file system.
The application locates and retrieves the physical document or image based on the name that is returned from the database when the data for a patient is queried. You need to evaluate whether the current application design uses the most secure method available to store information and provide an appropriate recommendation. What should you recommend?
A.
The current method of storage is the most secure one available.
B.
The current method of storage is not the most secure one available. Documents and images must be stored in the database.
C.
The current method of storage is not the most secure one available. Patient data, documents, and images must be serialized and stored in XML.
D.
The current method of storage is not the most secure one available. Patient data, documents, and images must be stored on a removable drive for quick removal in case of a security breach.