ExamTopics Logo
Mail Us[email protected]
Menu
Eccouncil Discussions
exam questions

Exam 312-50 All Questions

View all questions & answers for the 312-50 exam
Go to Exam

Exam 312-50 topic 8 question 91 discussion

Actual exam question from ECCouncil's 312-50
Question #: 91
Topic #: 8
[All 312-50 Questions]

Which of the following is considered the best way to protect Personally Identifiable Information (PII) from Web application vulnerabilities?

  • A. Use cryptographic storage to store all PII
  • B. Use encrypted communications protocols to transmit PII
  • C. Use full disk encryption on all hard drives to protect PII
  • D. Use a security token to log into all Web applications that use PII
Show Suggested Answer Hide Answer
Suggested Answer: A 🗳️
As a matter of good practice any PII should be protected with strong encryption.
References: https://cuit.columbia.edu/cuit/it-security-practices/handling-personally-identifying-information
by Bright07 at Feb. 12, 2020, 2:54 a.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
[Removed]
7 months, 1 week ago
Selected Answer: B
If you want to protect PII on a Web Application that generally means the data will be in transit so storage wouldn't be the correct answer.
upvoted 1 times
...
Deliman
7 months, 2 weeks ago
I think B is the correct answer
upvoted 1 times
...
Luukman
1 year, 1 month ago
Bad question. If my website is vulnerable (OWASP: sql injection, csrf, or parameter tampering) none of the answers help..
upvoted 1 times
...
Grezavi
1 year, 4 months ago
A. Justification: Cryptography is Encryption. Storing is any time the data is in any type of memory. B -> A but A is more comprehensive and would cover transmission memory, servers, hard disks etc. It is a more comprehensive answer.
upvoted 2 times
...
cehexam
1 year, 5 months ago
For Me A snd B is the answer but now which is the most correct?.. as they asked for web application and not storage, I will pick B. storage is not done on web application level but on DB/server level
upvoted 2 times
...
IamStuding
1 year, 8 months ago
Also for me is B. We are talking about web services and here ecrypted communications are the most important.
upvoted 2 times
...
jasonderules
2 years, 8 months ago
I think it is B also.
upvoted 1 times
...
Bright07
2 years, 9 months ago
Use encrypted communications protocols to transmit PII. Even According to your comment, the right answer is B. I don't know the reason why a lot of website is choosing cryptographic storage. If you choose A as your answer can you give the reason because it has become the bone of contention. Thanks. If there is no reason then B. is the right answer.
upvoted 2 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago