Practice Test 1 | Google Cloud Certified Professional Cloud Architect | Dumps | Mock Test
One of your clients is using customer-managed encryption, which of the following statements are true when you are applying a customer-managed encryption key to an object in Cloud Storage? [Select THREE]
A. the encryption key is used to encrypt the object’s data
B. the encryption key is used to encrypt the object’s CRC32C checksum
C. the encryption key is used to encrypt the object’s name
D. the encryption key is used to encrypt the object’s MD5 hash
Answer: A, B, D
Options A, B, and D are CORRECT.
When you apply a customer-managed encryption key to an object, the encryption key is used to encrypt the object, its CRC32C checksum, and its MD5 hash. The remaining metadata for the object, including the object’s name, is encrypted using standard server-side keys. This allows you to always read and update metadata, as well as list and delete objects, provided you have permission to do so.
Reference:
Comments are closed, but trackbacks and pingbacks are open.