CV0-002 · Question #129
An administrator is tasked with encrypting all Personally Identifiable Information (PII) within a cloud- based database. Which of the following types of encryption will ensure that ONLY this type of i
The correct answer is D. Table encryption. The task is to encrypt only Personally Identifiable Information (PII) within a cloud-based database, ensuring other data remains unencrypted.
Question
An administrator is tasked with encrypting all Personally Identifiable Information (PII) within a cloud- based database. Which of the following types of encryption will ensure that ONLY this type of information is encrypted while the rest of the database remains unencrypted?
Options
- AFile and folder encryption
- BTransport encryption
- CHard drive encryption
- DTable encryption
How the community answered
(29 responses)- A3% (1)
- C3% (1)
- D93% (27)
Why each option
The task is to encrypt only Personally Identifiable Information (PII) within a cloud-based database, ensuring other data remains unencrypted.
File and folder encryption would encrypt the entire database file(s) on the file system, encrypting all data within, not just the PII.
Transport encryption encrypts data in transit over a network (e.g., TLS/SSL) and does not protect data at rest within the database.
Hard drive encryption (e.g., full disk encryption) encrypts the entire storage device, encrypting all data stored on it, not just specific PII within a database.
Table encryption, or more specifically column-level encryption within a database table, allows an administrator to encrypt only specific columns where PII resides, leaving other columns or tables in the database unencrypted, precisely meeting the requirement.
Concept tested: Granular database encryption methods
Source: https://learn.microsoft.com/sql/relational-databases/security/encryption/encrypt-a-column-of-data
Topics
Community Discussion
No community discussion yet for this question.