Certified Ethical Hacker (CEH v13) — Question 204

As a cybersecurity analyst for SecureNet, you are performing a security assessment of a new mobile payment application. One of your primary concerns is the secure storage of customer data on the device. The application stores sensitive information such as credit card details and personal identification numbers (PINs) on the device. Which of the following measures would best ensure the security of this data?

Answer options

• A. Enable GPS tracking for all devices using the app.
• B. Regularly update the app to the latest version.
• C. Encrypt all sensitive data stored on the device.
• D. Implement biometric authentication for app access.

Correct answer: C

Explanation

The correct answer is C because encrypting sensitive data ensures that even if the data is accessed by unauthorized individuals, it remains unreadable without the decryption key. Option A does not address data security, option B is important for overall security but does not specifically protect stored data, and option D enhances access security but does not secure the data itself on the device.