Topic 1 Question 101

Professional Cloud Security Engineer

Topic 1 Question 101
Your company wants to determine what products they can build to help customers improve their credit scores depending on their age range. To achieve this, you need to join user information in the company's banking app with customers' credit score data received from a third party. While using this raw data will allow you to complete this task, it exposes sensitive data, which could be propagated into new systems. This risk needs to be addressed using de-identification and tokenization with Cloud Data Loss Prevention while maintaining the referential integrity across the database. Which cryptographic token format should you use to meet these requirements?
- Deterministic encryption
- Secure, key-based hashes
- Format-preserving encryption
- Cryptographic hashing
解説
Reference: https://cloud.google.com/blog/products/identity-security/take-charge-of-your-data-how-tokenization-makes-data-usable-without-sacrificing-privacy

ユーザの投票
コメント(12)
- 正解だと思う選択肢: A
  ”This encryption method is reversible, which helps to maintain referential integrity across your database and has no character-set limitations.” https://cloud.google.com/blog/products/identity-security/take-charge-of-your-data-how-tokenization-makes-data-usable-without-sacrificing-privacy
  
  👍 11
  mT32022/05/19
- A correct - https://cloud.google.com/blog/products/identity-security/take-charge-of-your-data-how-tokenization-makes-datausable-without-sacrificing-privacy
  
  👍 3
  gionny2022/04/26
- 正解だと思う選択肢: D
  Cryptographic hash (CryptoHashConfig) maintains referential integrity. "Determinist encryption" is not a transformation method. https://cloud.google.com/dlp/docs/transformations-reference
  
  👍 2
  Taliesyn2022/05/10
シャッフルモード

解説

ユーザの投票

コメント(12)