Which method should a security administrator use to ensure the security of backup files during transfer?

• A. Encrypting the files only
• B. Validating backup hash
• C. Compressing the files
• D. Transferring files without any checks

Answer: (B)

Validating the backup hash is a critical method to ensure the integrity and security of backup files during transfer. When a backup is created, a hash value (a unique string of characters generated by a hashing algorithm) is computed from the data. This hash acts as a fingerprint for the backup file.

When the backup files are transferred, the security administrator can calculate the hash of the transferred data and compare it to the original hash. If the two match, it confirms that the data has not been altered or corrupted during the transfer process, ensuring its integrity.

This method is particularly valuable in detecting any unexpected changes or malicious tampering that might occur while the data is in transit. Moreover, it safeguards against security breaches that could compromise the backup files.

In contrast, while encrypting files can protect the contents from unauthorized access, it does not validate whether the data has remained intact during the transfer. Compressing files, while beneficial for bandwidth and storage purposes, does not provide any security measures for the data. Transferring files without checks entirely eliminates any form of security and integrity validation, which is highly discouraged in any secure data handling process.