Which phase of the cloud data life cycle allows both read and process functions to be
performed?
A. Create
B. Archive
C. Store
D. Share
Correct Answer: A. Create
Expert Rationale:
The Create phase of the cloud data life cycle is the stage in which data is initially generated,
modified, or updated. During this phase, users and systems can both read existing information
and process or manipulate data before it is stored or distributed. Activities such as data entry,
editing, computation, and validation commonly occur during creation.
• Option A: Create — Correct. The create phase supports active interaction with data,
including reading, processing, and preparing data for storage or sharing.
• Option B: Archive — Incorrect. The archive phase involves long-term retention of
inactive data for compliance or backup purposes. Data is generally not actively processed
during this phase.
• Option C: Store — Incorrect. The store phase focuses on preserving and maintaining
data within storage systems for future retrieval rather than active processing.
• Option D: Share — Incorrect. The share phase is primarily concerned with distributing
or transmitting data to authorized users or systems.
Understanding the cloud data life cycle is essential for implementing appropriate security
controls, access management, and compliance measures throughout data handling processes.
DIF: Knowledge
REF: Cloud Data Life Cycle
,OBJ: Identify phases of the cloud data life cycle
TOP: Cloud Security
Which phase of the cloud data security life cycle typically occurs simultaneously with
creation?
A. Share
B. Store
C. Use
D. Destroy
Correct Answer: B. Store
Expert Rationale:
In the cloud data security life cycle, the Store phase commonly occurs at the same time data is
created. As information is generated, systems typically save or write the data immediately into
storage repositories, databases, or cloud environments to ensure availability and integrity.
• Option B: Store — Correct. Newly created data is commonly stored immediately after
or during creation to preserve accessibility and prevent data loss.
• Option A: Share — Incorrect. Sharing occurs after data has been created and stored,
when it is distributed to users or systems.
• Option C: Use — Incorrect. The use phase refers to accessing or manipulating already
stored data.
• Option D: Destroy — Incorrect. Destruction occurs at the end of the data life cycle when
information is securely deleted or removed.
Effective data storage during creation helps maintain confidentiality, integrity, and availability
within cloud environments.
DIF: Knowledge
REF: Cloud Data Security Life Cycle
OBJ: Recognize simultaneous cloud data processes
TOP: Cloud Data Management
Which phase of the cloud data life cycle uses content delivery networks?
A. Destroy
B. Archive
C. Share
D. Create
Correct Answer: C. Share
Expert Rationale:
,The Share phase of the cloud data life cycle involves distributing data to users, applications, or
systems. Content delivery networks (CDNs) are commonly used during this phase to efficiently
deliver content across geographically distributed locations while improving speed, performance,
and availability.
• Option C: Share — Correct. CDNs optimize the delivery and sharing of content such as
videos, files, applications, and websites to end users.
• Option A: Destroy — Incorrect. The destroy phase focuses on securely deleting or
removing data.
• Option B: Archive — Incorrect. Archiving involves storing inactive data for long-term
retention rather than active distribution.
• Option D: Create — Incorrect. Creation focuses on generating or modifying data, not
distributing it through networks.
Organizations use CDNs to enhance scalability, reduce latency, and improve user experience
during cloud-based data sharing operations.
DIF: Knowledge
REF: Cloud Data Distribution
OBJ: Identify technologies used during data sharing
TOP: Cloud Networking
Which phase of the cloud data life cycle is associated with crypto-shredding?
A. Share
B. Use
C. Destroy
D. Store
Correct Answer: C. Destroy
Expert Rationale:
Crypto-shredding is a secure data destruction technique that involves deleting encryption keys so
encrypted data becomes permanently inaccessible. This process is associated with the Destroy
phase of the cloud data life cycle.
• Option C: Destroy — Correct. Crypto-shredding ensures secure disposal of sensitive
information by rendering encrypted data unreadable and irretrievable.
• Option A: Share — Incorrect. Sharing focuses on distributing data to authorized parties.
• Option B: Use — Incorrect. The use phase involves accessing or processing active data.
• Option D: Store — Incorrect. Storage focuses on preserving and maintaining data.
Secure destruction methods such as crypto-shredding are critical for protecting confidential
information and ensuring regulatory compliance in cloud environments.
, DIF: Knowledge
REF: Data Destruction Techniques
OBJ: Identify cloud data destruction methods
TOP: Cloud Security
Which cloud data storage architecture allows sensitive data to be replaced with unique
identification symbols that retain all the essential information about the data without
compromising its security?
A. Randomization
B. Obfuscation
C. Anonymization
D. Tokenization
Correct Answer: D. Tokenization
Expert Rationale:
Tokenization is a security method that replaces sensitive data with unique identification symbols
called tokens. These tokens preserve essential information while protecting the original data
from unauthorized access.
• Option D: Tokenization — Correct. Tokenization substitutes sensitive values with non-
sensitive tokens that have no exploitable meaning outside the secure tokenization system.
• Option A: Randomization — Incorrect. Randomization alters data unpredictably but
does not necessarily preserve usability or reference relationships.
• Option B: Obfuscation — Incorrect. Obfuscation hides or disguises data but may still
allow reverse engineering.
• Option C: Anonymization — Incorrect. Anonymization removes personally identifiable
information permanently, often making re-identification impossible.
Tokenization is widely used in cloud environments to protect financial records, healthcare data,
and personally identifiable information.
DIF: Knowledge
REF: Cloud Data Protection Methods
OBJ: Identify secure cloud storage architectures
TOP: Data Security
Which methodology could cloud data storage utilize to encrypt all data associated in an
infrastructure as a service (IaaS) deployment model?
A. Sandbox encryption
B. Polymorphic encryption
C. Client-side encryption
D. Whole-instance encryption
performed?
A. Create
B. Archive
C. Store
D. Share
Correct Answer: A. Create
Expert Rationale:
The Create phase of the cloud data life cycle is the stage in which data is initially generated,
modified, or updated. During this phase, users and systems can both read existing information
and process or manipulate data before it is stored or distributed. Activities such as data entry,
editing, computation, and validation commonly occur during creation.
• Option A: Create — Correct. The create phase supports active interaction with data,
including reading, processing, and preparing data for storage or sharing.
• Option B: Archive — Incorrect. The archive phase involves long-term retention of
inactive data for compliance or backup purposes. Data is generally not actively processed
during this phase.
• Option C: Store — Incorrect. The store phase focuses on preserving and maintaining
data within storage systems for future retrieval rather than active processing.
• Option D: Share — Incorrect. The share phase is primarily concerned with distributing
or transmitting data to authorized users or systems.
Understanding the cloud data life cycle is essential for implementing appropriate security
controls, access management, and compliance measures throughout data handling processes.
DIF: Knowledge
REF: Cloud Data Life Cycle
,OBJ: Identify phases of the cloud data life cycle
TOP: Cloud Security
Which phase of the cloud data security life cycle typically occurs simultaneously with
creation?
A. Share
B. Store
C. Use
D. Destroy
Correct Answer: B. Store
Expert Rationale:
In the cloud data security life cycle, the Store phase commonly occurs at the same time data is
created. As information is generated, systems typically save or write the data immediately into
storage repositories, databases, or cloud environments to ensure availability and integrity.
• Option B: Store — Correct. Newly created data is commonly stored immediately after
or during creation to preserve accessibility and prevent data loss.
• Option A: Share — Incorrect. Sharing occurs after data has been created and stored,
when it is distributed to users or systems.
• Option C: Use — Incorrect. The use phase refers to accessing or manipulating already
stored data.
• Option D: Destroy — Incorrect. Destruction occurs at the end of the data life cycle when
information is securely deleted or removed.
Effective data storage during creation helps maintain confidentiality, integrity, and availability
within cloud environments.
DIF: Knowledge
REF: Cloud Data Security Life Cycle
OBJ: Recognize simultaneous cloud data processes
TOP: Cloud Data Management
Which phase of the cloud data life cycle uses content delivery networks?
A. Destroy
B. Archive
C. Share
D. Create
Correct Answer: C. Share
Expert Rationale:
,The Share phase of the cloud data life cycle involves distributing data to users, applications, or
systems. Content delivery networks (CDNs) are commonly used during this phase to efficiently
deliver content across geographically distributed locations while improving speed, performance,
and availability.
• Option C: Share — Correct. CDNs optimize the delivery and sharing of content such as
videos, files, applications, and websites to end users.
• Option A: Destroy — Incorrect. The destroy phase focuses on securely deleting or
removing data.
• Option B: Archive — Incorrect. Archiving involves storing inactive data for long-term
retention rather than active distribution.
• Option D: Create — Incorrect. Creation focuses on generating or modifying data, not
distributing it through networks.
Organizations use CDNs to enhance scalability, reduce latency, and improve user experience
during cloud-based data sharing operations.
DIF: Knowledge
REF: Cloud Data Distribution
OBJ: Identify technologies used during data sharing
TOP: Cloud Networking
Which phase of the cloud data life cycle is associated with crypto-shredding?
A. Share
B. Use
C. Destroy
D. Store
Correct Answer: C. Destroy
Expert Rationale:
Crypto-shredding is a secure data destruction technique that involves deleting encryption keys so
encrypted data becomes permanently inaccessible. This process is associated with the Destroy
phase of the cloud data life cycle.
• Option C: Destroy — Correct. Crypto-shredding ensures secure disposal of sensitive
information by rendering encrypted data unreadable and irretrievable.
• Option A: Share — Incorrect. Sharing focuses on distributing data to authorized parties.
• Option B: Use — Incorrect. The use phase involves accessing or processing active data.
• Option D: Store — Incorrect. Storage focuses on preserving and maintaining data.
Secure destruction methods such as crypto-shredding are critical for protecting confidential
information and ensuring regulatory compliance in cloud environments.
, DIF: Knowledge
REF: Data Destruction Techniques
OBJ: Identify cloud data destruction methods
TOP: Cloud Security
Which cloud data storage architecture allows sensitive data to be replaced with unique
identification symbols that retain all the essential information about the data without
compromising its security?
A. Randomization
B. Obfuscation
C. Anonymization
D. Tokenization
Correct Answer: D. Tokenization
Expert Rationale:
Tokenization is a security method that replaces sensitive data with unique identification symbols
called tokens. These tokens preserve essential information while protecting the original data
from unauthorized access.
• Option D: Tokenization — Correct. Tokenization substitutes sensitive values with non-
sensitive tokens that have no exploitable meaning outside the secure tokenization system.
• Option A: Randomization — Incorrect. Randomization alters data unpredictably but
does not necessarily preserve usability or reference relationships.
• Option B: Obfuscation — Incorrect. Obfuscation hides or disguises data but may still
allow reverse engineering.
• Option C: Anonymization — Incorrect. Anonymization removes personally identifiable
information permanently, often making re-identification impossible.
Tokenization is widely used in cloud environments to protect financial records, healthcare data,
and personally identifiable information.
DIF: Knowledge
REF: Cloud Data Protection Methods
OBJ: Identify secure cloud storage architectures
TOP: Data Security
Which methodology could cloud data storage utilize to encrypt all data associated in an
infrastructure as a service (IaaS) deployment model?
A. Sandbox encryption
B. Polymorphic encryption
C. Client-side encryption
D. Whole-instance encryption
