nerdexam
ExamsCV0-003Questions#448
CompTIA

CV0-003 · Question #448

CV0-003 Question #448: Real Exam Question with Answer & Explanation

The correct answer is A: Self-encrypting disk. Self-encrypting disks use built-in hardware encryption engines to automatically encrypt all data written to the disk, making them the best hardware-based solution for protecting Big Data at rest.

Security

Question

A Big Data analytics company wants to ensure its data is protected at rest. Which of the following is the BEST hardware-based solution?

Options

  • ASelf-encrypting disk
  • BTokenization
  • CLUN masking
  • DDeduplication

Explanation

Self-encrypting disks use built-in hardware encryption engines to automatically encrypt all data written to the disk, making them the best hardware-based solution for protecting Big Data at rest.

Common mistakes.

  • B. Tokenization replaces sensitive data values with non-sensitive placeholders in software and is not a hardware-based encryption solution for protecting data stored on disk.
  • C. LUN masking is a storage access control technique that restricts which hosts can see a given logical unit and does not encrypt data stored on the disk.
  • D. Deduplication reduces storage consumption by eliminating duplicate data blocks and is a storage efficiency technique, not a security or encryption mechanism.

Concept tested. Hardware-based encryption for data at rest using SEDs

Reference. https://csrc.nist.gov/publications/detail/sp/800-111/final

Topics

#encryption at rest#self-encrypting drive#hardware security#data protection

Community Discussion

No community discussion yet for this question.

Sign up to join the discussion
Full CV0-003 Practice