Welcome to ExamTopics
ExamTopics Logo
- Expert Verified, Online, Free.
Mail Us[email protected]
Menu
Eccouncil Discussions
exam questions

Exam 312-50v12 All Questions

View all questions & answers for the 312-50v12 exam
Go to Exam

Exam 312-50v12 topic 1 question 158 discussion

Actual exam question from ECCouncil's 312-50v12
Question #: 158
Topic #: 1
[All 312-50v12 Questions]

You work as a cloud security specialist at SkyNet Solutions. One of your clients is a healthcare organization that plans to migrate its electronic health record (EHR) system to the cloud. This system contains highly sensitive personal and medical data. As part of your job, you need to ensure the security and privacy of this data while it is being transferred and stored in the cloud. You recommend that data should be encrypted during transit and at rest. However, you also need to ensure that even if a cloud service provider(CSP) has access to encrypted data, they should not be able to decrypt it. Which of the following would be the most suitable strategy to meet this requirement?

  • A. Rely on network-level encryption protocols for data transfer.
  • B. Use SSL/TLS for data transfer and allow the CSP to manage encryption keys.
  • C. Utilize the CSP's built-in data encryption services.
  • D. Use client-side encryption and manage encryption keys independently of the CSP.
Show Suggested Answer Hide Answer
Suggested Answer: D 🗳️
by DarioReymag at Feb. 6, 2024, 10:38 p.m.

Comments

Chosen Answer:
This is a voting comment (?) , you can switch to a simple comment.
Switch to a voting comment New
Submit Cancel
insaniunt
Highly Voted 9 months, 2 weeks ago
Selected Answer: D
D. Use client-side encryption and manage encryption keys independently of the CSP.
upvoted 5 times
...
LordXander
Most Recent 8 months ago
Selected Answer: D
D...I think there's a similar question to this, but this one makes the most sense because: A - no control over the keys and if someone would be sniffing...well B - the CSP has the keys so if they have the encrypted data they can decrypt it C - again, CSP has the keys D - you have the data encrypted on the device/client, and manage the keys so by the time it reaches the network (even local) it is already encrypted. Answer is D
upvoted 1 times
...
multivolt
9 months, 2 weeks ago
Could someone help me confirm if this is correct
upvoted 1 times
...

Get IT Certification

Unlock free, top-quality video courses on ExamTopics with a simple registration. Elevate your learning journey with our expertly curated content. Register now to access a diverse range of educational resources designed for your success. Start learning today with ExamTopics!

Start Learning for free
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel