nerdexam
ExamsSY0-301Questions#371
CompTIA

SY0-301 · Question #371

SY0-301 Question #371: Real Exam Question with Answer & Explanation

The correct answer is C: Hash the credential fields and use encryption for the credit card field. The key distinction is that credentials (usernames/passwords) only need to be verified - they never need to be retrieved in their original form - so hashing (a one-way function) is ideal. If a hash database is breached, the original passwords cannot be reversed. Credit card numbe

Question

An online store wants to protect user credentials and credit card information so that customers can store their credit card information and use their card for multiple separate transactions. Which of the following database designs provides the BEST security for the online store?

Options

  • AUse encryption for the credential fields and hash the credit card field
  • BEncrypt the username and hash the password
  • CHash the credential fields and use encryption for the credit card field
  • DHash both the credential fields and the credit card field

Explanation

The key distinction is that credentials (usernames/passwords) only need to be verified - they never need to be retrieved in their original form - so hashing (a one-way function) is ideal. If a hash database is breached, the original passwords cannot be reversed. Credit card numbers, however, must be retrieved and reused for future transactions, so they require encryption (a reversible two-way process). Option A reverses this logic by encrypting credentials (reversible, less secure) and hashing credit cards (irreversible, making them unusable for future purchases). Option C correctly applies hashing to credentials and encryption to credit card data, satisfying both security and business requirements.

Community Discussion

No community discussion yet for this question.

Sign up to join the discussion
Full SY0-301 Practice