A systems administrator has installed a disk wiping utility on all computers across the organization and configured it to perform a seven-pass wipe and an additional pass to overwrite the disk with zeros. The company has also instituted a policy that requires users to erase files containing sensitive information when they are no longer needed.
To ensure the process provides the intended results, an auditor reviews the following content from a randomly selected decommissioned hard disk:
Which of the following should be included in the auditor’s report based in the above findings?
A. The hard disk contains bad sectors
B. The disk has been degaussed.
C. The data represents part of the disk BIOS.
D. Sensitive data might still be present on the hard drives.
How to PASS CAS-004 in First Attempt?FULL Printable PDF and Software. VALID exam to help you PASS. |
the answer is A. Hard drives with bad sectors don’t zero out those sectors.
Oddly enough, the answer is bad sectors (A). When you do a disk wipe, you zero out in binary. If there was sensitive data, you would see a series of 1s and 0s. Since we are seeing alphabetic characters, it should be a bad sector.
D – that’s the end result. If the software wipe failed to wipe the area around a bad sector, the net effect IS: There still could be sensitive data present – right?
An auditor would definitely report that sensitive data might still be present on the hard drives if they saw that result.
B?