XML Feeds

What is RSS?

Search Big4Guy

Custom Search

Sponsored

« Effective Fraud Risk Management - A Ten Step Plan to Tackle Fraud RiskEvaluating Control Exceptions - How to Evaluate Control Exceptions for Sarbanes Oxley Compliance »

Forensic Backup Copies - CISM Practice Tutorial Question

Forensic Backup Copies - CISM Practice Tutorial Question

Q). Which one of the following types of backups is going to be of most use for forensic purposes?

A. Tape archive of files.
B. Dump of file system.
C. Device to Device copy.
D. Dump of memory store.

Answer: The correct answer is "C". For forensic purposes, it is very important to get a complete backup of the disk drive. A device to device copy reads data block-by-block. It copies even the files which have been deleted. A device to device copy is thus the most effective approach for forensic purposes.

Related CISM questions

Establishing Security Baselines
Deploying a Honeypot
Social Engineering Attacks
Metrics for Information Security Program


Permalink 03/21/06 08:50:10 pm , by big4guy Email , 9 views, Question of the Day, Leave a comment »

No feedback yet

Leave a comment


Your email address will not be revealed on this site.

Your URL will be displayed.
(Line breaks become <br />)
(Name, email & website)
(Allow users to contact you through a message form (your email will not be revealed.)