Exam CAS-004 All QuestionsBrowse all questions from this exam
Go to Exam
Question 301

A company processes sensitive cardholder information that is stored in an internal production database and accessed by internet-facing web servers. The company's Chief Information Security Officer (CISO) is concerned with the risks related to sensitive data exposure and wants to implement tokenization of sensitive information at the record level. The company implements a one-to-many mapping of primary credit card numbers to temporary credit card numbers.

Which of the following should the CISO consider in a tokenization system?

    Correct Answer: C

    Single-use translation is the correct choice for tokenizing sensitive cardholder information. It involves creating a unique token for each instance of a credit card number, ensuring that even if tokens are intercepted or exposed, they cannot be reused to retrieve the original sensitive information. This approach ensures that the tokens are unique and unpredictable, enhancing the security of the tokenization system.

Discussion
23169fdOption: C

Single-use translation: In tokenization, single-use translation refers to the practice of creating a unique token for each instance of a credit card number. This ensures that even if tokens are intercepted or exposed, they cannot be reused to retrieve the original sensitive information. This approach enhances security by ensuring that tokens are unique and not predictable

e020fdcOption: C

Key word is "unique." When you tokenize the data, you need to conceal what the real numbers are, but the tokens need to be unique. If you and I both have our credit cards in the database and are assigned the same token, how is the vendor to know which one to process when I buy something? A. Data field watermarking - A Watermark for data synchronization describes an object of a predefined format which provides a point of reference value for two systems/datasets attempting to establish delta/incremental synchronization; any object in the queried data source which was created, modified, or deleted after the watermark's value will be qualified as "above watermark" and should be returned to the client requesting data. B. Field tagging - Defines a field that the user selects as input for an analytic script. OR Field tags provide the possibility of adding metadata to the fields in your data model.

e020fdc

C. Single-use translation - Credit card tokenization is a security protocol that protects sensitive data during online transactions. It works by replacing a cardholder's Primary Account Number (PAN) with a unique, randomly generated identifier, referred to as a token. Hence, cardholder data is never exposed during the payment process. D. Salted hashing - A cryptographic salt is made up of random bits added to each password instance before its hashing.

DWtriple0Option: C

"Single-use translation" appears to be an answer without a clear definition. A google search for this exact term yields only references to this exam question. Can anyone enlighten us?

AlizadehOption: C

The correct answer is C