What is a chain of custody?
- The documentation surrounding the preservation of evidence related to an incident
- A list of all of the stakeholders that were exploited by an attacker
- The disciplinary measures an organization may perform if an incident is caused by an employee
- A plan ensuring that each party involved in an incident response understands how to collect evidence
Explanation: A chain of custody refers to the documentation of evidence collected about an incident that is used by authorities during an investigation.
Exam with this question: CCNA Cyber Ops Chapter 13 Exam Answers
Exam with this question: Checkpoint Exam: Incident Response Answers
Exam with this question: Cyber Threat Management: My Knowledge Check Answers
Please login or Register to submit your answer