SK0-005 · Question #55
SK0-005 Question #55: Real Exam Question with Answer & Explanation
The correct answer is A: Encrypt all network traffic. {"question_number": 2, "explanation": "Encrypting hard drives protects data at rest. To implement a comprehensive data loss prevention (DLP) strategy, data in transit must also be protected. Encrypting all network traffic (e.g., using TLS/SSL or VPNs) ensures that data leaving th
Question
A company has implemented a requirement to encrypt all the hard drives on its servers as part of a data loss prevention strategy. Which of the following should the company also perform as a data loss prevention method?
Options
- AEncrypt all network traffic
- BImplement MFA on all the servers with encrypted data
- CBlock the servers from using an encrypted USB
- DImplement port security on the switches
Explanation
{"question_number": 2, "explanation": "Encrypting hard drives protects data at rest. To implement a comprehensive data loss prevention (DLP) strategy, data in transit must also be protected. Encrypting all network traffic (e.g., using TLS/SSL or VPNs) ensures that data leaving the server is unreadable if intercepted, complementing the at-rest encryption. MFA (B) is an authentication control, not DLP. Blocking encrypted USBs (C) addresses exfiltration but is narrower in scope. Port security (D) controls network access but does not encrypt data.", "generated_by": "claude-sonnet", "llm_judge_score": 4}
Topics
Community Discussion
No community discussion yet for this question.