CCSP · Question #324
CCSP Question #324: Real Exam Question with Answer & Explanation
The correct answer is B: Anonymization. Anonymization is the process of removing or modifying personally identifiable information (PII) from data sets so that individuals cannot be directly or indirectly identified, even by combining multiple indirect identifiers.
Question
Although indirect identifiers cannot alone point to an individual, the more of them known can lead to a specific identity. Which strategy can be used to avoid such a connection being made? Response:
Options
- AMasking
- BAnonymization
- CObfuscation
- DEncryption
Explanation
Anonymization is the process of removing or modifying personally identifiable information (PII) from data sets so that individuals cannot be directly or indirectly identified, even by combining multiple indirect identifiers.
Common mistakes.
- A. Data masking replaces sensitive data with non-sensitive but realistic data, primarily for testing or training, and while it protects original data, it might not fully prevent re-identification through indirect identifiers if the masking is not sufficiently robust.
- C. Obfuscation makes data or code harder to understand but doesn't necessarily remove identifying links, meaning that with enough indirect identifiers, re-identification might still be possible.
- D. Encryption transforms data into an unreadable format but retains the ability to decrypt it back to its original state, thus not preventing re-identification if the key is compromised or the data is decrypted.
Concept tested. Data anonymization for privacy
Topics
Community Discussion
No community discussion yet for this question.