CompTIA Security+ (SY0-701) — Question 42

A security engineer is implementing FDE for all laptops in an organization. Which of the following are the most important for the engineer to consider as part of the planning process? (Choose two.)

Answer options

• A. Key escrow
• B. TPM presence
• C. Digital signatures
• D. Data tokenization
• E. Public key management
• F. Certificate authority linking

Correct answer: A, B

Explanation

Key escrow is crucial for recovering encryption keys if needed, while TPM presence ensures that the encryption keys are stored securely. The other options, such as digital signatures and data tokenization, are relevant to encryption but do not directly impact the implementation of FDE as much as key escrow and TPM do.