To protect corporate data on removable media, a security policy should mandate that all removable devices use which of the following?
A.
Full disk encryption
B.
Application isolation
C.
Digital rights management
D.
Data execution prevention
Explanation:
Full-disk encryption encrypts the data on the hard drive of the device or on a removable drive. This feature ensures that the data on the device or removable drive
cannot be accessed in a useable form should it be stolen.
Incorrect Answers:
B: Application Isolation is the process of ensuring that the application always uses the version of shared files with which it was installed, preventing component
versioning conflicts. This is performed by the developer of the application.
C: Digital rights management (DRM) is a set of technologies used by publishers, copyright holders, and individuals to control the after-sale use of digital content,
most prominently, to curb piracy of digital content.
D: Data Execution Prevention (DEP) is a security feature built into the operating system. It defines areas of memory as executable and nonexecutable. This
protects against program errors, and some malicious exploits, such as buffer overflows.Stewart, James Michael, CompTIA Security+ Review Guide, Sybex, Indianapolis, 2014, pp 251- http://www.symantec.com/connect/articles/application-isolationbasics-and-directions http://en.wikipedia.org/wiki/Digital_rights_management
http://en.wikipedia.org/wiki/Data_Execution_Prevention