Sec+ | 1.4 Encryptions | 701

This is a cryptographic technology that uses a key to convert plain text data into cipher text data. The data is transmitted as cipher text, and then once reaching its destination is reverted back to the original plain text form. The purpose of this technology is to ensure data is SECURE/PRIVATE/CONFIDENTIAL.

A mathematical function that takes data of any size and produces a fixed-size string of characters, essentially acting like a unique "fingerprint" of that data. It is used to verify the integrity of information and detect any changes made to it.

If an employee at IP Cyber is denied access to a file that they want to access, which part of the CIA triad is being enforced?

If a threat actor breaks into our systems and is attempting to collect credential information (username/passwords) data from one of our databases, which of these cryptographic technologies would reduce the impact of their attack?

This is a a random string of data added to a password or other sensitive information before it is hashed to add complexity. It also helps an enterprise defeat a threat actors capability to use a rainbow table.

This is a technique used to hide data in an image file.

Our company has a massive amount of sensitive customer data that has been archived. As a safety protocol, we have encrypted this data to ensure that it cannot be read by anyone who should not have access. What is the state of the data we are protecting?

The policy of Least Privilege controls the amount of access rights employees have within our organization. What part of the CIA triad would this security control influence?

IP Cyber is planning to allow employees to work from home (remote-work) and wants to ensure that when they connect to the companies resources, they are connecting through a secure medium that encrypts all traffic. They have chosen to use a Virtual Private Network (VPN). What state is the data that the employees are accessing through the VPN considered to be in?

IP Cyber is going to use Full Disk Encryption (FDE) on all employee-issued laptops to ensure all data on each laptop is as secure as possible in the event that a laptop is stolen. This means IP Cyber needs to store a copy of each employees keys somewhere. Where is a good place to store cryptographic keys for this purpose?