nerdexam
ExamsCAS-002Questions#620
CompTIA

CAS-002 · Question #620

CAS-002 Question #620: Real Exam Question with Answer & Explanation

The correct answer is C: Disable cross session cut and paste. RDP-based outsourcing requires preventive data loss controls targeting clipboard channels, access entitlement hygiene, and network-level source restrictions.

Question

An organization has decided to reduce labor costs by outsourcing back office processing of credit applications to a provider located in another country. Data sovereignty and privacy concerns raised by the security team resulted in the third-party provider only accessing and processing the data via remote desktop sessions. To facilitate communications and improve productivity, staff at the third party has been provided with corporate email accounts that are only accessible via the remote desktop sessions. Email forwarding is blocked and staff at the third party can only communicate with staff within the organization. Which of the following additional controls should be implemented to prevent data loss? (Select THREE).

Options

  • AImplement hashing of data in transit
  • BSession recording and capture
  • CDisable cross session cut and paste
  • DMonitor approved credit accounts
  • EUser access audit reviews
  • FSource IP whitelisting

Explanation

RDP-based outsourcing requires preventive data loss controls targeting clipboard channels, access entitlement hygiene, and network-level source restrictions.

Common mistakes.

  • A. Hashing data in transit is an integrity control that verifies data has not been tampered with, but it does nothing to prevent authorized users from copying or exfiltrating data during a session.
  • B. Session recording is a detective control that captures activity for forensic review after the fact, but it does not prevent data from being exfiltrated in real time during an active session.
  • D. Monitoring approved credit accounts addresses fraud detection on processed applications and does not directly prevent third-party staff from exfiltrating raw application data during their sessions.

Concept tested. DLP controls for RDP-based third-party data access

Reference. https://learn.microsoft.com/en-us/azure/virtual-desktop/security-guide

Community Discussion

No community discussion yet for this question.

Sign up to join the discussion
Full CAS-002 Practice