ExamTopics Logo
Mail Us[email protected]
Menu
Microsoft Discussions
exam questions

Exam AZ-203 All Questions

View all questions & answers for the AZ-203 exam
Go to Exam

Exam AZ-203 topic 8 question 2 discussion

Actual exam question from Microsoft's AZ-203
Question #: 2
Topic #: 8
[All AZ-203 Questions]

Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution.
After you answer a question in this question, you will NOT be able to return to it. As a result, these questions will not appear in the review screen.
You need to ensure that the SecurityPin security requirements are met.
Solution: Using the Azure Portal, add Data Masking to the SecurityPin column, and exclude the dbo user. Add a SQL security policy with a filter predicate based on the user identity.
Does the solution meet the goal?

  • A. Yes
  • B. No
Show Suggested Answer Hide Answer
Suggested Answer: B 🗳️
Instead of DataMasing, enable Always Encrypted for the SecurityPin column.
Scenario: Users' SecurityPin must be stored in such a way that access to the database does not allow the viewing of SecurityPins. The web application is the only system that should have access to SecurityPins.
by lau13 at May 19, 2020, 7:24 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
lau13
5 years, 1 month ago
I don't like the explanation. Data Masking can be a solution if set up properly, it is that excluding the dbo user won't work.
upvoted 3 times
Drunken
5 years ago
In that case the solution does not meet the expectations and it is not a valid answer.
upvoted 2 times
ather_13
5 years ago
the purpose of data masking is different from encryption, once u mask the data, data get changed and shouldn't be reversible while encryption encode the data and can be retrieve back. Data masking data is used for testing or research purpose.
upvoted 2 times
bugimachi
4 years, 5 months ago
This is wrong. Data Masking is used to hide sensitive data from admins or db users. Data won't get changed and you exclude particular users from masking (for example the identity your web app uses to access the data) so that they can get unmasked data. Masking does not change the data.
upvoted 3 times
...
...
...
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel