A company processes sensitive cardholder information that is

A company processes sensitive cardholder information that is - CompTIA CAS-005

Question

A company processes sensitive cardholder information that is stored in an internal production database and accessed by internet-facing web servers. The company's Chief Information Security Officer (CISO) is concerned with the risks related to sensitive data exposure and wants to implement tokenization of sensitive information at the record level. The company implements a one-to-many mapping of primary credit card numbers to temporary credit card numbers. Which of the following should the CISO consider in a tokenization system?

Answers

Data field watermarking
Field tagging
correct

use translation
Salted hashing

Explanation

The correct answer is: C. Single-use translation

Tokenization replaces sensitive data, such as credit card numbers, with a non-sensitive equivalent called a token. For this process to ensure security and meet compliance requirements, the system should use single-use translation, which involves creating unique, one-time-use tokens for each transaction or record.

In this scenario:

The company uses a one-to-many mapping of primary credit card numbers to temporary credit card numbers. This means a single real credit card number can be represented by multiple unique tokens, making single-use translation the most relevant consideration.
This approach ensures that even if a token is intercepted, it cannot be reused or linked back to the original credit card number without access to the secure tokenization system.

Why the other options are incorrect:

Data field watermarking:

Incorrect: Data field watermarking embeds identifiers in data fields for tracking and verification purposes. It is not related to tokenization or protecting sensitive information.

Field tagging:

Incorrect: Field tagging involves adding metadata or labels to data fields for classification or processing. It does not directly contribute to tokenization or securing sensitive data.

Salted hashing:

Incorrect: Salted hashing creates a fixed-length hash using a salt and is suitable for securing passwords. However, hashing is irreversible, whereas tokenization requires reversibility (via a tokenization system) to retrieve the original data when needed.

View Full Course Content Try our Free Questions

No Payment Cards Needed

CompTIA SecurityX CAS-005 exam

Normally $60

$45/month

Subjects Included

CompTIA SecurityX CAS-005

Additional Features

Over 300 Practice Questions with Answers
Quizzes in every Lesson Provided
Detailed Analysis of Questions with Answers and Explanations
Detailed Notes with Chapters, Topics & Lessons
24/7 Live chat support
24/7 WhatsApp support
One Full Month Access

Get Started

View Other Pricing Plans

CompTIA Prep

CompTIA Cloud+ CV0-004

Start Course Prep

CompTIA Prep

CompTIA Server+ SK0-005

Start Course Prep

Easy way to pass your test within a week with prepsaret

You don’t need one month to study and pass your test.
With Prepsaret, it takes you a few days to grasp all the concepts needed to pass your exams

View Courses Offered