GIAC Certified Forensic Analyst (GCFA) — Question 36

Your network has a Windows 2000 Server computer with FAT file system, shared by several users.
This system stores sensitive data. You decide to encrypt this data to protect it from unauthorized access. You want to accomplish the following goals:
✑ Data should be secure and encrypted.
✑ Administrative efforts should be minimum.
✑ You should have the ability to recover encrypted files in case the file owner leaves the company.
✑ Other permissions on encrypted files should be unaffected.
✑ File-level security is required on the disk where data is stored.
✑ Encrypting or decrypting of files should not be the responsibility of the file owner.
You take the following steps to accomplish these goals :
✑ Convert the FAT file system to Windows 2000 NTFS file system.
✑ Use Encrypting File System (EFS) to encrypt data.
Which of the following goals will you be able to accomplish?
Each correct answer represents a complete solution. Choose all that apply.

Answer options

• A. File-level security is available on the disk where data is stored.
• B. You have the ability to recover encrypted files in case the file owner leaves the company.
• C. Encrypting or decrypting of files is no longer the responsibility of the file owner.
• D. Data are secured and encrypted.
• E. Administrative efforts are minimum.
• F. Other permissions on encrypted files are unaffected.

Correct answer: A, B, C, D, E, F

Explanation

By converting to NTFS and using EFS, you enable file-level security, ensure the ability to recover files, remove the encryption responsibility from the file owner, secure the data, and maintain low administrative efforts. All these goals align with the capabilities provided by NTFS and EFS, allowing for effective data protection without compromising other permissions.