Exam CY0-001 Topic 1 Question 45 Discussion

Actual exam question for CompTIA's CY0-001 exam
Question #: 45
Topic #: 1

SIMULATION
Instructions
Part1
Use drop-down menu to select the most appropriate protocol or cipher for each system component.
Part2
Use the drop-down menu to select the most appropriate technique to apply to the modified data.
It at any time you would like to bring back the initial state of the simulation, please click the Reset All button.
An engineer is analyzing findings from a penetration test that indicate insufficient data encryption.
The engineer must implement data security.

Suggested Answer:

Explanation:
Part 1 (Protocols/Ciphers):
API Gateway: TLS 1.2
* Database: AES-512
* AI Model: gRPC
Part 2 (Techniques):
1. {pin:"999-99-9999", name:"john doe"} → {pin:"999-99-9999", name:"john doe", sensitivity:"SECRET"} → Classification
2. {ip_addr:"1.2.3.4", cookie:"aK3idkd==", name:"John Doe" uid="1111"} → {cookie:"aK3idkd==", uid="1111"} → De-identification
3. {pin:"999-99-9999", name:"john doe"} → {pin:"999-99-XXXX", name:"john doe"} → Masking
4. {card_number:"1111222233334444", name:"john doe", user_id:"1"} →
{card_number:"0x019238829", name:"john doe", user_id:"1"} → Tokenization
5. {name:"john doe", patient_id:"10000", dob:"1980-Jan-05"} → {patient_id:"10000", dob:"1980- Jan-05"} → Anonymization Part 1:
* TLS 1.2 secures client-to-gateway communications.
* AES-512 provides strong encryption for data at rest in the database.
* gRPC ensures efficient, secure communication between services (AI model).
Part 2:
* Classification tags sensitive data for handling.
* De-identification strips direct identifiers.
* Masking obscures part of sensitive values while keeping format.
* Tokenization replaces sensitive data with a reversible placeholder.
* Anonymization removes identifying attributes, making re-identification impossible.

by Marcus at May 09, 2026, 10:43 PM

Limited Time Offer

15%

Off

Get Premium CY0-001 Questions as Interactive Self Test Engine or PDF

Comments

Here are all the actual test exam dumps for IT exams. Most people prepare for the actual exams with our test dumps to pass their exams. So it's critical to choose and actual test pdf to succeed.

RECENT DISCUSSIONS

Useful Links

Contact Us

Our Working Time: ( GMT 0:00-15:00 )
From Monday to Saturday

Support: Contact now

If you have any question please leave me your email address, we will reply and send email to you in 12 hours.

Disclaimer:
Actual4test doesn't offer Real SANS and GIAC Exam Questions.
Oracle and Java are registered trademarks of Oracle and/or its affiliates
Actual4test material do not contain actual actual Oracle Exam Questions or material.
Actual4test doesn't offer Real Microsoft Exam Questions.
Microsoft®, Azure®, Windows®, Windows Vista®, and the Windows logo are registered trademarks of Microsoft Corporation
Actual4test Materials do not contain actual questions and answers from Cisco's Certification Exams. The brand Cisco is a registered trademark of CISCO, Inc
CFA Institute does not endorse, promote or warrant the accuracy or quality of these questions. CFA® and Chartered Financial Analyst® are registered trademarks owned by CFA Institute.
Actual4test does not offer exam dumps or questions from actual exams. We offer learning material and practice tests created by subject matter experts to assist and help learners prepare for those exams. All certification brands used on the website are owned by the respective brand owners. Actual4test does not own or claim any ownership on any of the brands.