Exam CCSP All QuestionsBrowse all questions from this exam
Go to Exam
Question 11

Which of the following approaches would NOT be considered sufficient to meet the requirements of secure data destruction within a cloud environment?

    Correct Answer: D

    Deletion merely removes the pointers to data on a system; it does nothing to actually remove and sanitize the data. The data remains in a recoverable state, making it insufficient for secure data destruction within a cloud environment. More thorough methods such as cryptographic erasure, zeroing, or overwriting are needed to ensure that data is properly destroyed and irrecoverable.

Discussion
ArizonaClassicsOption: D

Agreed with D

SekeOption: C

Chapter 3: Data Classification (CCSP Official Study Guide) Method 1: Physical Destruction of Media and Hardware Any hardware or portable media containing the data in question can be destroyed by burning, melting, impact (beating, drilling, grinding, and so forth), or industrial shredding. This is the preferred method of sanitization, since the data is physically unrecoverable. Method 2:Degaussing This involves applying strong magnetic fields to the hardware and media where the data resides, effectively making them blank. It does not work with solid-state drives. Method 3:Overwriting Multiple passes of random characters are written to the storage areas (particular disk sectors) where the data resides, with a final pass of all zeroes or ones. This can be extremely time-consuming for large storage areas. Method 4:Cryptoshredding (AKA Cryptographic Erasure) This involves encrypting the data with a strong encryption engine, and then taking the keys generated in that process, encrypting them with a different encryption engine, and destroying the keys.

vitoscotorroOption: D

D seems right

RamnikOption: D

D is correct. Data Remanence is a concern here.

RBa001Option: D

This is a negative Question. Option D is the least preferred method and Option A is the most preferred. Thus Correct answer is Option D

guest999Option: A

The only INCORRECT answer is A. Either the question is incorrect or there should be multiple answers. Because B,C & D are correct in a Cloud environment.

evilwizardington

Nope. In cloud environments, usually you dont have ways to overwrite the information at physical level, so the best way is to use cryptographic erasure. And the worst is just trusting the Deletion features, because it does not actually delete the information; only the pointers to it.

ggxOption: D

D is the right answer

secisfunOption: D

Agree with D

nigthwishOption: D

The answer is D.

SANKETBANG123Option: C

Answer should be C as Zeroing is not data destruction method.

BuckLeeOption: D

D for delete

DMODOption: D

D is correct. All other options will likely have less data remanence.

ikamalbhattOption: D

D is correct

Pika26Option: D

D is correct.

ay_caramba24Option: D

D is the correct answer.