CCSP Exam QuestionsBrowse all questions from this exam

CCSP Exam - Question 11

Which of the following approaches would NOT be considered sufficient to meet the requirements of secure data destruction within a cloud environment?

Cryptographic erasure

Zeroing

Overwriting

Deletion

Show Answer

Correct Answer: D

Deletion merely removes the pointers to data on a system; it does nothing to actually remove and sanitize the data. The data remains in a recoverable state, making it insufficient for secure data destruction within a cloud environment. More thorough methods such as cryptographic erasure, zeroing, or overwriting are needed to ensure that data is properly destroyed and irrecoverable.

Discussion

15 comments

ArizonaClassicsOption: D

Jan 7, 2020

Agreed with D

SekeOption: C

Dec 13, 2021

Chapter 3: Data Classification (CCSP Official Study Guide) Method 1: Physical Destruction of Media and Hardware Any hardware or portable media containing the data in question can be destroyed by burning, melting, impact (beating, drilling, grinding, and so forth), or industrial shredding. This is the preferred method of sanitization, since the data is physically unrecoverable. Method 2:Degaussing This involves applying strong magnetic fields to the hardware and media where the data resides, effectively making them blank. It does not work with solid-state drives. Method 3:Overwriting Multiple passes of random characters are written to the storage areas (particular disk sectors) where the data resides, with a final pass of all zeroes or ones. This can be extremely time-consuming for large storage areas. Method 4:Cryptoshredding (AKA Cryptographic Erasure) This involves encrypting the data with a strong encryption engine, and then taking the keys generated in that process, encrypting them with a different encryption engine, and destroying the keys.

vitoscotorroOption: D

Feb 3, 2020

D seems right

guest999Option: A

Jun 17, 2020

The only INCORRECT answer is A. Either the question is incorrect or there should be multiple answers. Because B,C & D are correct in a Cloud environment.

evilwizardington

Feb 1, 2021

Nope. In cloud environments, usually you dont have ways to overwrite the information at physical level, so the best way is to use cryptographic erasure. And the worst is just trusting the Deletion features, because it does not actually delete the information; only the pointers to it.

RBa001Option: D

Jul 11, 2020

This is a negative Question. Option D is the least preferred method and Option A is the most preferred. Thus Correct answer is Option D

RamnikOption: D

Mar 2, 2021

D is correct. Data Remanence is a concern here.

ggxOption: D

May 23, 2022

D is the right answer

nigthwishOption: D

Sep 21, 2022

The answer is D.

secisfunOption: D

Dec 20, 2022

Agree with D

ay_caramba24Option: D

Sep 12, 2022

D is the correct answer.

Pika26Option: D

Mar 26, 2023

D is correct.

ikamalbhattOption: D

May 1, 2023

D is correct

DMODOption: D

May 27, 2023

D is correct. All other options will likely have less data remanence.

BuckLeeOption: D

Sep 28, 2023

D for delete

SANKETBANG123Option: C

Jul 9, 2024

Answer should be C as Zeroing is not data destruction method.