CompTIA A+ 1102 Privacy, Licensing, and Policies

Question 1

• control evidence and maintain integrity
• documents everybody who comes into contact with the evidence
• avoid tampering
• use hashes
• label and catalog everything
• use digital signatures

Answer 1

Incident Response : Chain of Custody

Question 2

1. identify the issue
   - logs, monitoring data
2. report to proper channels
3. collect and protect evidence

Answer 2

Incident Response : First Response (steps)

Question 3

• included with most software
• per-seat or concurrent
• may expire or may be perpetual

Answer 3

Software Licenses

Question 4

perpetual

Answer 4

Personal Software Licenses

Question 5

• per-seat/per-site
• the software may be installed everywhere
• annual renewals

Answer 5

Corporate Use Software Licenses

Question 6

FOSS

Answer 6

Free and Open Source (acronym)

Question 7

EULA

Answer 7

End User License Agreement (acronym)

Question 8

EULA

Answer 8

determines how software can be used

Question 9

PCI DSS

Answer 9

Payment Card Industry Data Security Standard (acronym)

Question 10

• a standard for protecting credit card information
• six control objectives

Answer 10

PCI DSS

Question 11

GDPR

Answer 11

General Data Protection Regulation (acronym)

Question 12

• European union regulation
• data protection and privacy for individuals in the EU
• gives users control of their personal data
• right of erasure

Answer 12

GDPR

Question 13

PHI

Answer 13

Protected Health Information (acronym)

Question 14

regulated with HIPAA

Answer 14

PHI