CISSP PRACTICE QUESTIONS – 20211212

Effective CISSP Questions

Your company decides to retreat a branch from a foreign country and sanitize data stored in hard drives so that the media cannot be reused. Which of the following sanitization methods is the most effective? (Wentz QOTD)
A. Single-pass overwrite all sectors on a hard drive
B. Clear the master boot record (MBR) of the hard drive
C. Destroy the key used to encrypt the whole drive
D. Eliminate the remnant magnetic field of the hard drive

Kindly be reminded that the suggested answer is for your reference only. It doesn’t matter whether you have the right or wrong answer. What really matters is your reasoning process and justifications.

My suggested answer is D. Eliminate the remnant magnetic field of the hard drive.

Wentz’s book, The Effective CISSP: Security and Risk Management, helps CISSP and CISM aspirants build a solid conceptual security model. It is a tutorial for information security and a supplement to the official study guides for the CISSP and CISM exams and an informative reference for security professionals.

Sanitization and Disposition Decision Flow
Sanitization and Disposition Decision Flow

According to NIST SP 800-88 R1, there are three major sanitization methods: clear, purge, and destroy. As your company requires that data shall be sanitized and the media cannot be reused, “destroy” is the most effective. The media can be reused if clear or purge is conducted.

Degaussing, a destructive method, means eliminating the remnant magnetic field of the hard drive; it destructs data and renders the media unusable. When degaussing magnetic tapes, some types of types can be reused; however, tapes that have metadata on them can’t after degaussing.

Reference


您的公司決定從國外撤出分支機構並清理存儲在硬盤驅動器中的數據,以便介質無法重複使用。 以下哪種消毒方法最有效?(Wentz QOTD)
A. 單遍覆蓋硬盤上的所有扇區
B. 清除硬盤的主引導記錄(MBR)
C. 銷毀用於加密整個驅動器的密鑰
D. 消除硬盤的殘餘磁場



Leave a Reply