CAS-005 · Question #187
CAS-005 Question #187: Real Exam Question with Answer & Explanation
The correct answer is C: Encrypting the data with customer-managed keys and then deleting both the encryption key and. Encrypting data with customer-managed keys and deleting both the key and the volume ensures that the data becomes cryptographically unrecoverable, even if the physical media still exists. This is the most reliable method for secure data disposal in cloud environments.
Question
An organization has several systems deployed in a public cloud and wants to confirm that when data retention periods are reached, the data is properly disposed of. Which of the following best meets the organization's needs?
Options
- ADouble encrypting the data using both asymmetric and symmetric keys managed by the cloud
- BUtilizing a data-wiping software to overwrite the existing data
- CEncrypting the data with customer-managed keys and then deleting both the encryption key and
- DAsking the cloud provider for copies of certificates of destruction
Explanation
Encrypting data with customer-managed keys and deleting both the key and the volume ensures that the data becomes cryptographically unrecoverable, even if the physical media still exists. This is the most reliable method for secure data disposal in cloud environments.
Community Discussion
No community discussion yet for this question.