Welcome to ExamTopics
ExamTopics Logo
- Expert Verified, Online, Free.

Unlimited Access

Get Unlimited Contributor Access to the all ExamTopics Exams!
Take advantage of PDF Files for 1000+ Exams along with community discussions and pass IT Certification Exams Easily.

Exam CCSK topic 1 question 51 discussion

Actual exam question from CSA's CCSK
Question #: 51
Topic #: 1
[All CCSK Questions]

How is encryption managed on multi-tenant storage?

  • A. Single key for all data owners
  • B. One key per data owner
  • C. Multiple keys per data owner
  • D. The answer could be A, B, or C depending on the provider
  • E. C for data subject to the EU Data Protection Directive; B for all others
Show Suggested Answer Hide Answer
Suggested Answer: B 🗳️

Comments

Chosen Answer:
This is a voting comment (?) , you can switch to a simple comment.
Switch to a voting comment New
ChewyBananas
6 days, 11 hours ago
Selected Answer: B
How is it managed vs. how should it be managed. Should have one key per owner at least but could have multiple keys or a single key for everyone.
upvoted 1 times
...
_jpsrob_
3 months, 1 week ago
Selected Answer: D
This is a poorly formulated question but i believe the answer could still be D In an ideal scenario, "One key per data owner" would be a recommended practice for maintaining the highest level of security in a multi-tenant environment. However, the original question was about how encryption is managed on multi-tenant storage, without specifying it to the best or recommended practice. That's why the answer can still be "The answer could be A, B, or C depending on the provider," because in reality, encryption management can vary widely across different providers. It's always important for customers to inquire about a provider's security practices to ensure they are suitable for their specific needs, and to ideally look for a provider that uses the most secure practices, such as one key per data owner.
upvoted 2 times
...
MrN0body
9 months, 3 weeks ago
This is another poorly written question. If the authors of the CCSK exam want the question to be aligned with security, it should read: How should encryption be managed on multi-tenant storage? To @Brainiac's point, I've seen CSP that either facilitate 1 key per customer or do not support unique keys at all. The Security Guidance even states it is recommended to use per-customer keys when possible...when possible being the key phrase here.
upvoted 2 times
...
byfener
11 months ago
Selected Answer: B
According Security-Guidance-v4.0, Pg 125 : "It is recommended to use percustomer keys when possible, in order to better enforce multitenancy isolation." Answer must be B
upvoted 4 times
...
negevon
11 months ago
No answer here is correct - The right answer should be "B or C" but without the relations to regualtions. A is not meeting cloud security basics and cannot be part of an answer
upvoted 1 times
...
saptati
11 months, 2 weeks ago
B is the correct answer. For multi-tenant storage, it is recommended to use per-customer keys when possible, in order to better enforce multitenancy isolation. Ref: Security-Guidance-v4.0, Pg 125.
upvoted 3 times
...
Brainiac
1 year, 1 month ago
The management of encryption on multi-tenant storage can vary depending on the provider and their specific implementation. However, the most common approach is: D. The answer could be A, B, or C depending on the provider. Different cloud service providers may employ different encryption strategies for multi-tenant storage. The management of encryption keys can vary from using a single key for all data owners (option A) to assigning one key per data owner (option B) or even allowing multiple keys per data owner (option C). The chosen approach depends on the provider's security architecture, data isolation mechanisms, and the level of encryption granularity required by their customers. It's important to note that cloud service providers often offer encryption-related features and options, allowing customers to select their desired level of encryption and key management. Therefore, the specific encryption management strategy employed on multi-tenant storage can vary and should be determined based on the capabilities and offerings of the individual provider.
upvoted 2 times
moten
1 year, 1 month ago
Ans "A" is not aligned with a security rules, never using single key among the multiple Data owners.
upvoted 2 times
...
...
FATWENTYSIX
1 year, 2 months ago
multiple keys per data owner
upvoted 3 times
...
moota
1 year, 3 months ago
Selected Answer: C
I can't find it in the reference but I think this should be C. The major cloud providers I know allow you to at least do two: a) multiple cloud-provider managed encryption keys b) customer-managed keys
upvoted 3 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
Loading ...
ex Want to SAVE BIG on Certification Exam Prep?
close
ex Unlock All Exams with ExamTopics Pro 75% Off
  • arrow Choose From 1000+ Exams
  • arrow Access to 10 Exams per Month
  • arrow PDF Format Available
  • arrow Inline Discussions
  • arrow No Captcha/Robot Checks
Limited Time Offer
Ends in