220-1002 Question #507: Real Exam Question with Answer & Explanation

The correct answer is A: PCI compliance. NOTE: The marked correct answer of A (PCI Compliance) appears to be an error in this question's answer key. PCI DSS (Payment Card Industry Data Security Standard) is a set of security standards for organizations that handle credit card data - it does not describe evidence handlin

Question

A company seized an employee's laptop due to illegal activity. The computer has been locked in an office until it can be turned over to authorities. and no one is allowed to log on to it. Which of the following policies is this an example of?

Options

APCI compliance
BProper reporting
CData preservation
DChain of custody

Explanation

NOTE: The marked correct answer of A (PCI Compliance) appears to be an error in this question's answer key. PCI DSS (Payment Card Industry Data Security Standard) is a set of security standards for organizations that handle credit card data - it does not describe evidence handling procedures. The scenario - seizing a laptop, locking it in a secure location, and prohibiting access until law enforcement takes possession - is a textbook example of Chain of Custody (D). Chain of custody is the documented, unbroken trail of evidence handling that ensures digital evidence is preserved in its original state and is admissible in court. It involves restricting access, logging who handles the evidence, and maintaining integrity. Data preservation (C) is related but is a subset of proper chain of custody procedures. The correct answer should be D.

Community Discussion

No community discussion yet for this question.

Full 220-1002 Practice