ExamTopics Logo
Mail Us[email protected]
Menu
Microsoft Discussions
exam questions

Exam DP-201 All Questions

View all questions & answers for the DP-201 exam
Go to Exam

Exam DP-201 topic 3 question 3 discussion

Actual exam question from Microsoft's DP-201
Question #: 3
Topic #: 3
[All DP-201 Questions]

HOTSPOT -
A company plans to use Azure SQL Database to support a line of business application. The application will manage sensitive employee data.
The solution must meet the following requirements:
✑ Encryption must be performed by the application.
✑ Only the client application must have access keys for encrypting and decrypting data.
✑ Data must never appear as plain text in the database.
✑ The strongest possible encryption method must be used.
✑ Grouping must be possible on selected data.
What should you recommend? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.
Hot Area:

Show Suggested Answer Hide Answer
Suggested Answer:
Box 1: Always Encrypted with deterministic encryption
Deterministic encryption always generates the same encrypted value for any given plain text value. Using deterministic encryption allows point lookups, equality joins, grouping and indexing on encrypted columns. However, it may also allow unauthorized users to guess information about encrypted values by examining patterns in the encrypted column, especially if there is a small set of possible encrypted values, such as True/False, or North/South/East/West region.
Deterministic encryption must use a column collation with a binary2 sort order for character columns.
Box 2: Always Encrypted with Randomized encryption
✑ Randomized encryption uses a method that encrypts data in a less predictable manner. Randomized encryption is more secure, but prevents searching, grouping, indexing, and joining on encrypted columns.
Note: With Always Encrypted the Database Engine never operates on plaintext data stored in encrypted columns, but it still supports some queries on encrypted data, depending on the encryption type for the column. Always Encrypted supports two types of encryption: randomized encryption and deterministic encryption.
Use deterministic encryption for columns that will be used as search or grouping parameters, for example a government ID number. Use randomized encryption, for data such as confidential investigation comments, which are not grouped with other records and are not used to join tables.
Reference:
https://docs.microsoft.com/en-us/sql/relational-databases/security/encryption/always-encrypted-database-engine
by extraego at Aug. 19, 2020, 7:35 a.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
extraego
Highly Voted 4 years, 9 months ago
This was in my exam. The options were "Grouping data" and "Non-grouping data" instead of "Searchable data" and "Non-searchable data".
upvoted 30 times
Ikrom
4 years, 9 months ago
and the same options to choose?
upvoted 1 times
zglat
4 years, 9 months ago
Use randomized encryption, for data such as confidential investigation comments, which are not grouped with other records and are not used to join tables.
upvoted 2 times
...
...
ZodiaC
3 years, 11 months ago
Its sads Grouping data and Non grouping data
upvoted 2 times
...
...
Vijaya
Highly Voted 4 years, 9 months ago
Use deterministic encryption for columns that will be used as search or grouping parameters. For example, a government ID number. Use randomized encryption for data such as confidential investigation comments, which aren't grouped with other records and aren't used to join tables.
upvoted 14 times
...
teedap123
Most Recent 3 years, 11 months ago
This was in my exam also..thanks guys
upvoted 3 times
Vaishu05
3 years, 11 months ago
So the answers are correct right?
upvoted 1 times
...
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel