CompTIA CASP+ (CAS-004) — Question 95

A security analyst sees that a hacker has discovered some keys and they are being made available on a public website. The security analyst is then able to successfully decrypt that data using the keys from the website. Which of the following should the security analyst recommend to protect the affected data?

Answer options

• A. Key rotation
• B. Key revocation
• C. Key escrow
• D. Zeroization
• E. Cryptographic obfuscation

Correct answer: B

Explanation

Key revocation is essential in this scenario because it invalidates the compromised keys, preventing further unauthorized access to the data. Key rotation may help in the future but does not address the immediate threat of the leaked keys. Key escrow, zeroization, and cryptographic obfuscation do not directly mitigate the current risk posed by the exposed keys.