CompTIA
SY0-301 · Question #620
SY0-301 Question #620: Real Exam Question with Answer & Explanation
The correct answer is D: Theft of hardware. Full disk encryption protects data stored on a device by rendering it unreadable without the decryption key, making it most effective against threats involving physical access to the hardware.
Question
Full disk encryption is MOST effective against which of the following threats?
Options
- ADenial of service by data destruction
- BEavesdropping emanations
- CMalicious code
- DTheft of hardware
Explanation
Full disk encryption protects data stored on a device by rendering it unreadable without the decryption key, making it most effective against threats involving physical access to the hardware.
Common mistakes.
- A. Full disk encryption does not prevent a denial-of-service attack that destroys or overwrites data, as destruction does not require reading the data.
- B. Eavesdropping via electromagnetic emanations (TEMPEST attacks) captures signals emitted by hardware components during active use, which occurs after decryption and is not mitigated by disk encryption.
- C. Malicious code executes within the running operating system after the disk has already been decrypted and mounted, so disk encryption provides no protection against malware.
Concept tested. Full disk encryption protecting data from hardware theft
Community Discussion
No community discussion yet for this question.