Understanding Data Security: Key Concepts

What are the three states that security professionals consider when thinking about data security?

Data in storage, data in transit, and data in processing
Data stored, data transferred, and data accessed
Data at rest, data in motion, and data in use (correct)
Data at rest, data in processing, and data in transit

Which type of data is vulnerable to theft if an attacker gains access to the storage media?

Data in use
Data in processing
Data in motion
Data at rest (correct)

What are examples of data at rest?

Data on a smartphone, in an email, and on a social media platform
Data on a website, in a network, and on a USB stick
Data on a server, in a database, and on a mobile device
Data on a hard drive, in a cloud service, and on a magnetic tape (correct)

What does data in motion refer to?

Data moving around a network between two systems (B) Signup and view all the answers

Why must information security professionals protect against both physical and logical access to storage media?

Both methods can be effective ways to steal data (A) Signup and view all the answers

Why is it important to protect data in motion?

To prevent unauthorized access during data transmission over public networks (C) Signup and view all the answers

What is an example of using encryption to protect sensitive information at rest?

File encryption to protect data stored on a device (D) Signup and view all the answers

What is the primary concern for securing big data storage and analysis?

Protecting personally identifiable information and controlling access to it (D) Signup and view all the answers

What is the purpose of using access controls in data protection?

To prevent unauthorized access to information stored on devices (C) Signup and view all the answers

Why might big data rarely use relational databases?

Because relational databases cannot handle the large data sets used in big data processing (A) Signup and view all the answers

What is the primary focus of information security professionals when considering data security?

Preventing unauthorized access to data at rest, in motion, and in use (B) Signup and view all the answers

In what state is data vulnerable to theft if an attacker gains access to the storage media?

Data at rest (B) Signup and view all the answers

What does 'data in motion' refer to in the context of data security?

Data moving between two systems over a network (A) Signup and view all the answers

What is the primary purpose of using encryption in data protection?

To protect sensitive information when it is in transit (A) Signup and view all the answers

Which method can be an effective way to steal data at rest?

Hacking into an operating system (D) Signup and view all the answers

Why does big data rarely use relational databases?

Because of the significant overhead involved in using relational databases (D) Signup and view all the answers

What is the main concern for securing big data storage and analysis?

Managing access controls and permissions effectively (D) Signup and view all the answers

What is the purpose of access controls in data protection?

To restrict access to sensitive information on storage devices (B) Signup and view all the answers

What does data in use refer to?

Data that is being actively used in a system's memory (D) Signup and view all the answers

Why should organizations have clear policies surrounding the appropriate use of data and security controls?

To ensure sensitive information is not accessed by other processes (D) Signup and view all the answers