What is the role of a Data Recovery Agent in Windows Encrypting File System (EFS)?

Unlock all questions

This demo includes only 20 questions. Upgrade to access hundreds of questions, flashcards, exam simulations, and disable ads.

Full question bankExam simulationsFlashcards

From $24.99Unlock all

Prepare for the Computer Hacking Forensic Investigator v11 exam. Study with flashcards and multiple choice questions. Each question includes hints and explanations. Get exam-ready efficiently!

Multiple Choice

What is the role of a Data Recovery Agent in Windows Encrypting File System (EFS)?

In Windows Encrypting File System, a Data Recovery Agent is a designated, trusted account whose purpose is to recover encrypted data when the user who encrypted the file cannot access it. EFS protects each file with a file encryption key, and that key is itself encrypted with the user’s public key. The Data Recovery Agent holds a special certificate and private key that can decrypt that recovery key, allowing the file to be decrypted by an administrator. This provides a safe way to recover data in cases like lost keys, disabled accounts, or employee departures, and is usually configured through Group Policy. It’s a legitimate recovery mechanism, not malware, a hardware token, or a network service.

What is the role of a Data Recovery Agent in Windows Encrypting File System (EFS)?

Prepare for the Computer Hacking Forensic Investigator v11 exam. Study with flashcards and multiple choice questions. Each question includes hints and explanations. Get exam-ready efficiently!

What is the role of a Data Recovery Agent in Windows Encrypting File System (EFS)?

Get the latest from Passetra