A. A security platform that ingests logs from all network sensors, normalizes formats, correlates events across sources to detect multi-stage attack patterns, and stores log data remotely so that an attacker's deletion of local logs does not destroy the audit trail
B. Encryption of an entire storage volume β operating system, applications, and user data β so that a drive removed from its host computer and connected to another machine presents only unreadable ciphertext, protecting against physical theft
C. A restricted network segment that gives non-compliant devices access only to update and remediation servers β not production systems β so they can achieve compliance before being admitted to the organizational network
D. A data sanitization method that destroys the encryption key used to protect a full-disk-encrypted drive, rendering all stored ciphertext permanently irrecoverable β the preferred method for SSDs because sector overwrite is unreliable due to wear leveling