Note: This question is part of a series of questions that present the same scenario.
Each question in the series contains a unique solution that might meet the stated goals.
Some question sets might have more than one correct solution, while others might not have a correct solution.
After you answer a question in this section, you will NOT be able to return to it.
As a result, these questions will not appear in the review screen.
You recently discovered that the developers at your company emailed Azure Storage keys in plain text to third parties.
You need to ensure that when Azure Storage keys are emailed, the emails are encrypted.
Solution: You configure a mail flow rule that matches the text patterns.
Does this meet the goal?
Click on the arrows to vote for the correct answer
A. B.B.
https://docs.microsoft.com/en-us/exchange/policy-and-compliance/mail-flow-rules/conditions-and-exceptions?view=exchserver-2019The proposed solution of configuring a mail flow rule to match text patterns to ensure that emails containing Azure Storage keys are encrypted seems insufficient to meet the stated goal of ensuring that the emails are encrypted.
While the mail flow rule could potentially match specific patterns of text that indicate the presence of Azure Storage keys in the email body or attachments, it is not a foolproof method of ensuring encryption of such sensitive information.
Firstly, the developers at your company could use different variations of text to refer to Azure Storage keys, which may not be accounted for in the mail flow rule. Secondly, the mail flow rule may not detect emails containing Azure Storage keys that are not in plain text format, such as those embedded in images or encrypted files.
Therefore, to ensure that all emails containing Azure Storage keys are encrypted, a better solution would be to implement encryption of all outgoing emails that contain sensitive information. This can be achieved by configuring Office 365 Message Encryption or implementing Azure Information Protection (AIP) policies. These solutions provide robust encryption capabilities that can automatically detect sensitive information in emails and encrypt them, regardless of the format or text used.
In conclusion, the proposed solution of configuring a mail flow rule that matches text patterns may not be sufficient to ensure encryption of all emails containing Azure Storage keys, and a better solution would be to implement encryption of all outgoing emails containing sensitive information.