nerdexam
ExamsCV0-003Questions#345
CompTIA

CV0-003 · Question #345

CV0-003 Question #345: Real Exam Question with Answer & Explanation

The correct answer is A: IPSec tunnel. This question has a disputed correct answer - 'D. Encryption' is the technically correct answer for protecting data at rest confidentiality in a public cloud, though the listed answer is A.

Security

Question

Which of the following should an administrator implement to help reduce confidentiality risk for data at rest that is located in a public cloud?

Options

  • AIPSec tunnel
  • BTLS
  • CSSL
  • DEncryption

Explanation

This question has a disputed correct answer - 'D. Encryption' is the technically correct answer for protecting data at rest confidentiality in a public cloud, though the listed answer is A.

Common mistakes.

  • B. TLS protects data in transit by encrypting network communications, but does not address the confidentiality of data already at rest in cloud storage.
  • C. SSL is a deprecated transport-layer security protocol that, like TLS, only protects data in transit and not data stored at rest.
  • D. Encryption of data at rest is actually the most direct and correct solution for protecting confidentiality of stored data in a public cloud, making this answer disputed as 'wrong'.

Concept tested. Protecting data at rest confidentiality in public cloud

Reference. https://docs.microsoft.com/en-us/azure/security/fundamentals/encryption-atrest

Topics

#data at rest#public cloud security#confidentiality#encryption

Community Discussion

No community discussion yet for this question.

Sign up to join the discussion
Full CV0-003 Practice