CompTIA
CAS-001 · Question #221
CAS-001 Question #221: Real Exam Question with Answer & Explanation
The correct answer is B: Immediately implement a plan to remotely wipe all data from the device.. A lost encrypted smartphone still requires a remote wipe because encryption alone does not guarantee permanent data security against a determined adversary.
Question
A corporate executive lost their smartphone while on an overseas business trip. The phone was equipped with file encryption and secured with a strong passphrase. The phone contained over 60GB of proprietary data. Given this scenario, which of the following is the BEST course of action?
Options
- AFile an insurance claim and assure the executive the data is secure because it is encrypted.
- BImmediately implement a plan to remotely wipe all data from the device.
- CHave the executive change all passwords and issue the executive a new phone.
- DExecute a plan to remotely disable the device and report the loss to the police.
Explanation
A lost encrypted smartphone still requires a remote wipe because encryption alone does not guarantee permanent data security against a determined adversary.
Common mistakes.
- A. Relying solely on encryption without wiping leaves the data at persistent risk if the passphrase is compromised or the encryption implementation has flaws.
- C. Changing passwords and issuing a new phone addresses account access but does not remove the proprietary data that physically remains on the lost device.
- D. Remotely disabling the device renders it unusable but does not erase the stored data, which could still be extracted by removing the storage media.
Concept tested. Mobile device management remote wipe policy
Reference. https://learn.microsoft.com/en-us/mem/intune/remote-actions/devices-wipe
Community Discussion
No community discussion yet for this question.