Which of the following risks is best addressed by encryption?
Which of the following risks is best addressed by encryption?
Encryption is primarily used to protect data confidentiality and privacy by converting data into a code to prevent unauthorized access. This ensures that even if the data is intercepted or accessed by unauthorized individuals, it remains unreadable and secure, thereby addressing privacy risks effectively.
The answer should be B. Based on GTAG Global Technology Audit Guide (GTAG®) 1 - Confidentiality includes privacy considerations. - Encryption services applied where confidentiality is a stated requirement Thus B is correct answer
I think it's C. I checked the Gleim textbook and IIA textbook, and it said a bunch about Access, nothing about Privacy. Plus, if you think about it, what risk does it address (as per the original question)? If someone gains access to something that they shouldn't have access to, encryption protects your data so that the hacker still can't see it. Therefore, it addresses an access risk. This COULD entail privacy to a certain extent, but that's specifically only pertaining to the confidentiality of PII, not an all-around extent of accessing anything and everything. Therefore, I think Access Risk makes more sense because it entails anything and everything to do with the risks of people gaining access to ANY data (whether it be PII or other things) but still not being able to do anything with their access because the data is encrypted.
Hi, your sharing is regard the access of the documents. How about access to users' accounts? Users' accounts are controlled by password, SoD, etc.., this type of access risk is unable to use encryption. (user account password must be remembered by the user, not by encryption.) the answer should be B, privacy risk. Technical controls such as encryption or design changes can prevent privacy risks.
It's B. Encryption exists to protect privacy.
A is correct
Encryption is related to the integrity of information so I thnink A is correct
Encryption of sensitive data can be an effective way for a business to reduce its data breach risks. Encryption can be a “safe harbour,” that can limit your exposure to breach notification laws when unauthorized individuals gain access to your data.