Which of the following is NOT a correct way to protect Controlled Unclassified Information (CUI)?

The correct answer highlights an important aspect of how Controlled Unclassified Information (CUI) should be managed. While it is essential to store CUI on secured systems, simply being password-protected does not meet the necessary standards for protecting sensitive information.

Controlled Unclassified Information has specific requirements and guidelines that dictate how it should be stored and accessed. Using a password-protected system alone may not provide adequate security measures such as encryption, access control, and limited usage protocols that are vital to maintaining the confidentiality and integrity of CUI.

The other options reflect best practices for handling CUI. Limiting access ensures that only authorized personnel can view or handle the information, which is critical for preventing unauthorized disclosures. Storing CUI in secure locations further protects it from physical threats, while encrypting data adds an additional layer of security that is crucial, particularly when data is transmitted or stored in less secure environments. These measures collectively help ensure the proper management of CUI according to established regulations and standards.