What is a chain of custody?
- The documentation surrounding the preservation of evidence related to an incident
- A list of all of the stakeholders that were exploited by an attacker
- The disciplinary measures an organization may perform if an incident is caused by an employee
- A plan ensuring that each party involved in an incident response understands how to collect evidence
Explanation: A chain of custody refers to the documentation of evidence collected about an incident that is used by authorities during an investigation.
More Questions: CCNA Cyber Ops Chapter 13 Exam Answers