Question-9: At the storage layer Google uses the A

Question-9: At the storage layer, Google uses the Advanced Encryption Standard (AES) technique known as AES-256 to encrypt any and all data that is held by the company. In order to implement encryption in a standardised manner throughout Google Cloud, we make use of a centralised cryptographic library known as Tink. This library contains our FIPS 140-2 verified module, which goes by the moniker BoringCrypto. Which of the following assertions about encryption on Google Cloud Platform is not true?
A. By default, Google Cloud Platform encrypts client data kept at rest.
B. Using a set of master keys, each encryption key encrypts itself.
C. Customer-Managed Encryption Keys (CMEK) utilising Cloud KMS are your sole choice if you wish to handle your own encryption keys for data on Google Cloud Storage.
D. Data is divided into subfile chunks and encrypted using a unique encryption key at the storage level in Google Cloud Platform.
Correct Answer

Get All 340 Questions and Answer for Google Professional Cloud Architect

: 3 Explanation: Google Cloud Platform encrypts customer data stored at rest by default https://cloud.google.com/security/encryption-at-rest also use Customer-supplied encryption keys (CSEK) with cloud storage

Details

Category: Google Cloud Professional Certifications

Last Updated: 30 November -0001

You are here:

Home

Certifications

Google Cloud Professional Certifications

Question-9: At the storage layer Google uses the A

Related Articles