3.3 Data Protection Methods and Security Techniques

Question 1

What are geographic restrictions in data protection?

Answer 1

Policy decisions based on where data is located and where the user accessing the data is located.

Question 2

How does determining location differ between devices on an internal private network and wireless mobile devices?

Answer 2

Internal private network location determination is accurate; wireless mobile devices are difficult to locate due to their mobility.

Question 3

Define Geofencing and provide a practical example of its application.

Answer 3

Geofencing is making access decisions based on user location; an example is allowing access to corporate data only within corporate facilities.

Question 4

What is the difference between plaintext and ciphertext in data encryption?

Answer 4

Plaintext is readable data; ciphertext is the unreadable form after encryption.

Question 5

Describe the concept of ‘confusion’ as it relates to data encryption.

Answer 5

‘Confusion’ refers to significant changes between plaintext and ciphertext, ensuring a good encryption method.

Question 6

What is a hash and what are two common terms used to refer to it?

Answer 6

A hash is a one-way function representing data as text; common terms include ‘message digest’ and ‘fingerprint.’

Question 7

Explain the purpose of including a file hash next to a downloadable file.

Answer 7

To verify integrity by allowing users to compare the hash of the downloaded file with the published hash.

Question 8

What is a collision in the context of hashing algorithms?

Answer 8

A collision occurs when two different inputs produce the same hash output, undermining hash integrity.

Question 9

How is obfuscation used by developers to protect their code base?

Answer 9

Obfuscation makes code difficult to understand, protecting intellectual property while maintaining functionality.

Question 10

Describe tokenization and explain why the resulting token is safer to transmit across a network.

Answer 10

Tokenization replaces sensitive data with a non-sensitive token, which is safer as it cannot be used to derive the original data.

Question 11

What is the definition of IP Address/Subnet?

Answer 11

Network information used to help determine a user’s location, especially accurate on known internal private networks.

Question 12

What is geolocation?

Answer 12

A method, often involving GPS or wireless databases, used to accurately describe a person’s or device’s location.

Question 13

What does 802.11 Wireless refer to?

Answer 13

A standard used with wireless databases to help determine a mobile device’s location based on visible networks.

Question 14

What is encryption?

Answer 14

The process of converting plaintext into ciphertext for data protection.

Question 15

What is decryption?

Answer 15

The method of reverting ciphertext back to its original plaintext form, requiring a decryption key.

Question 16

What is data masking?

Answer 16

A type of obfuscation where original data is hidden to protect sensitive details.

Question 17

What is data segmentation?

Answer 17

The practice of separating data into smaller pieces to improve security against breaches.

Question 18

What are permission restrictions?

Answer 18

Security controls defining the rights and limitations a user has to access specific data.

Question 19

What is SHA-256?

Answer 19

A specific hashing algorithm producing a 256-bit output.

Question 20

What is a digital signature?

Answer 20

Created using hashing and public key cryptography to authenticate the sender and ensure message integrity.

Question 21

Fill in the blank: A _______ is a one-way function that represents data as a fixed-length string of text.

Answer 21

hash

Question 22

True or False: Geofencing allows access to data based solely on user identity, not location.

Answer 22

False