nerdexam
(ISC)2

CISSP · Question #14

Which of the following methods protects Personally Identifiable Information (PII) by use of a full replacement of the data element?

The correct answer is D. Data tokenization. Data tokenization is a method of protecting PII by replacing the sensitive data element with a non- sensitive equivalent, called a token, that has no extrinsic or exploitable meaning or value. The token is then mapped back to the original data element in a secure database. This w

Submitted by klara.se· Mar 5, 2026Security Engineering

Question

Which of the following methods protects Personally Identifiable Information (PII) by use of a full replacement of the data element?

Options

  • ATransparent Database Encryption (TDE)
  • BColumn level database encryption
  • CVolume encryption
  • DData tokenization

How the community answered

(33 responses)
  • B
    3% (1)
  • C
    3% (1)
  • D
    94% (31)

Explanation

Data tokenization is a method of protecting PII by replacing the sensitive data element with a non- sensitive equivalent, called a token, that has no extrinsic or exploitable meaning or value. The token is then mapped back to the original data element in a secure database. This way, the PII is not exposed in the data processing or storage, and only authorized parties can access the original data element. Data tokenization is different from encryption, which transforms the data element into a ciphertext that can be decrypted with a key. Data tokenization does not require a key, and the token cannot be reversed to reveal the original data element.

Topics

#PII protection#data tokenization#data masking#encryption

Community Discussion

No community discussion yet for this question.

Full CISSP Practice