CompTIA CASP+ (CAS-004) — Question 410

An organization handles sensitive information that must be displayed on call center technicians’ screens to verify the identities of remote callers. The technicians use three randomly selected fields of information to complete the identity verification process. Some of the fields contain PII that are unique identifiers for the remote callers. Which of the following should be implemented to identify remote callers while also reducing the risk that technicians could improperly use the identification information?

Answer options

• A. Data masking
• B. Encryption
• C. Tokenization
• D. Scrubbing
• E. Substitution

Correct answer: A

Explanation

Data masking is the correct choice because it protects sensitive information by obscuring it, enabling technicians to verify identities without exposing PII. Encryption secures data but does not change its visibility, tokenization replaces sensitive data with non-sensitive equivalents but is not necessary for this scenario, while scrubbing and substitution do not directly address the need for identity verification in a secure manner.