PROFESSIONAL-CLOUD-ARCHITECT · Question #32
PROFESSIONAL-CLOUD-ARCHITECT Question #32: Real Exam Question with Answer & Explanation
The correct answer is A: Create a tokenizer service and store only tokenized data.. Tokenization, when applied to data security, is the process of substituting a sensitive data element with a non-sensitive equivalent, referred to as a token, that has no extrinsic or exploitable meaning or value. The token is a reference that maps back to the sensitive data throu
Question
Your application needs to process credit card transactions. You want the smallest scope of Payment Card Industry (PCI) compliance without compromising the ability to analyze transactional data and trends relating to which payment methods are used. How should you design your architecture?
Options
- ACreate a tokenizer service and store only tokenized data.
- BCreate separate projects that only process credit card data.
- CCreate separate subnetworks and isolate the components that process credit card data.
- DStreamline the audit discovery phase by labeling all of the virtual machines (VMs) that process
- EEnable Logging export to Google BigQuery and use ACLs and views to scope the data shared
Explanation
Tokenization, when applied to data security, is the process of substituting a sensitive data element with a non-sensitive equivalent, referred to as a token, that has no extrinsic or exploitable meaning or value. The token is a reference that maps back to the sensitive data through a tokenization system. https://cloud.google.com/solutions/tokenizing-sensitive-cardholder-data-for-pci-dss
Community Discussion
No community discussion yet for this question.