Certified Ethical Hacker (CEH v12) — Question 230

As a cybersecurity analyst for SecureNet, you are performing a security assessment of a new mobile payment application. One of your primary concerns is the secure storage of customer data on the device. The application stores sensitive information such as credit card details and personal identification numbers (PINs) on the device. Which of the following measures would best ensure the security of this data?

Answer options

• A. Enable GPS tracking for all devices using the app.
• B. Regularly update the app to the latest version.
• C. Encrypt all sensitive data stored on the device.
• D. Implement biometric authentication for app access.

Correct answer: C

Explanation

The correct answer is C, as encrypting sensitive data stored on the device ensures that even if the data is accessed by unauthorized individuals, it remains unreadable without the decryption key. Options A and B do not directly address the protection of stored data, and while D enhances access security, it does not secure the data itself when stored.