C838 - Managing Cloud Security / Q&A
VERIFIED BY PROFESSIONAL
Which phase of the cloud data lifecycle allows both read and process functions to be performed?
Share
Store
Create
Archive -{ANS}- Create
Which phase of the cloud data security lifecycle typically occurs simultaneously with creation?
Use
Share
Store
Destroy -{ANS}- Store
Which phase of the cloud data life cycle uses content delivery networks?
Share
Create
Destroy
Archive -{ANS}- Share
Which phase of the cloud data life cycle is associated with crypto-shredding?
Use
Store
Share
Destroy -{ANS}- Destroy
,Which cloud data storage architecture allows sensitive data to be replaced with unique identification
symbols that retain all the essential information about the data without compromising its security?
Obfuscation
Tokenization
Anonymization
Randomization -{ANS}- Obfuscation
Which methodology could cloud data storage utilize to encrypt all data associated in an infrastructure as
a service (IaaS) deployment model?
Sandbox encryption
Client-side encryption
Polymorphic encryption
Whole-instance encryption -{ANS}- Whole-instance encryption
There is a threat to a banking cloud platform service. The developer needs to provide inclusion in a
relational database that is seamless and readily searchable by search engine algorithms.
Which platform as a service (PaaS) data type should be used?
Structured
Unstructured
Long-term storage
Short-term storage -{ANS}- Structured
Which platform as a service (PaaS) storage architecture should be used if an organization wants to store
presentations, documents, and audio files?
Block
Object
Distributed
Relational database -{ANS}- Block
, Which technique scrambles the content of data using a mathematical algorithm while keeping the
structural arrangement of the data?
Tokenization
Dynamic masking
Proxy-based encryption
Format-preserving encryption -{ANS}- Format-preserving encryption
Which encryption technique connects the instance to the encryption instance that handles all crypto
operations?
Proxy
Database
Server-side
Externally managed -{ANS}- Proxy
Which type of control should be used to implement custom controls that safeguard data?
Application level
Management plane
Options for access
Public and internal sharing -{ANS}- Application level
Which element is protected by an encryption system?
Data
Public key
Ciphertext
Management engine -{ANS}- Data
A cloud administrator recommends using tokenization as an alternative to protecting data without
encryption. The administrator needs to make an authorized application request to access the data.
Which step should occur immediately before this action is taken?
The application collects a token.
VERIFIED BY PROFESSIONAL
Which phase of the cloud data lifecycle allows both read and process functions to be performed?
Share
Store
Create
Archive -{ANS}- Create
Which phase of the cloud data security lifecycle typically occurs simultaneously with creation?
Use
Share
Store
Destroy -{ANS}- Store
Which phase of the cloud data life cycle uses content delivery networks?
Share
Create
Destroy
Archive -{ANS}- Share
Which phase of the cloud data life cycle is associated with crypto-shredding?
Use
Store
Share
Destroy -{ANS}- Destroy
,Which cloud data storage architecture allows sensitive data to be replaced with unique identification
symbols that retain all the essential information about the data without compromising its security?
Obfuscation
Tokenization
Anonymization
Randomization -{ANS}- Obfuscation
Which methodology could cloud data storage utilize to encrypt all data associated in an infrastructure as
a service (IaaS) deployment model?
Sandbox encryption
Client-side encryption
Polymorphic encryption
Whole-instance encryption -{ANS}- Whole-instance encryption
There is a threat to a banking cloud platform service. The developer needs to provide inclusion in a
relational database that is seamless and readily searchable by search engine algorithms.
Which platform as a service (PaaS) data type should be used?
Structured
Unstructured
Long-term storage
Short-term storage -{ANS}- Structured
Which platform as a service (PaaS) storage architecture should be used if an organization wants to store
presentations, documents, and audio files?
Block
Object
Distributed
Relational database -{ANS}- Block
, Which technique scrambles the content of data using a mathematical algorithm while keeping the
structural arrangement of the data?
Tokenization
Dynamic masking
Proxy-based encryption
Format-preserving encryption -{ANS}- Format-preserving encryption
Which encryption technique connects the instance to the encryption instance that handles all crypto
operations?
Proxy
Database
Server-side
Externally managed -{ANS}- Proxy
Which type of control should be used to implement custom controls that safeguard data?
Application level
Management plane
Options for access
Public and internal sharing -{ANS}- Application level
Which element is protected by an encryption system?
Data
Public key
Ciphertext
Management engine -{ANS}- Data
A cloud administrator recommends using tokenization as an alternative to protecting data without
encryption. The administrator needs to make an authorized application request to access the data.
Which step should occur immediately before this action is taken?
The application collects a token.
