Please solve ALL questions carefully.. Thanks

10- Corporate policy mandates that data should not be stored with personal information, such as family photos. Which of the following BEST implements this po licy? A) Full disk encryption B) Asset tracking C) Application control D) Strong segmentation 11- Which of the following methods would a malicious outsider use to gain access to a company's external-facing webmail portal without locking out any account? A) Brute force attack B) Dictionary attack C) Rainbow table D) SQL injection 12-A malicious insider was able to recover a company's password file. The insider used a tool recover employees passwords and was able to recover 90% of the password in the first five minutes. Which of the following will BEST mitigate this attack in the future? A) Failed logon monitoring B) Password length C) Account lockout D) Password history 13- An outside testing company performing black box testing against a new application determines it is possible to enter any characters into the application's web-based form. Which of the following controls should the application developers use to prevent this from occurring? A) CSRF prevention B) Sandboxing C) Fuzzing D) Input validation