Mar 18 • 🙋♂️ CISSP
Practice Question!
A company uses AES-256 to encrypt sensitive data at rest. They store the encryption keys on the same server as the encrypted data. What is the primary risk associated with this practice?
A) The encryption keys could be easily guessed due to their proximity to the data.
B) Storing keys on the same server increases the risk of unauthorized access to both keys and data if the server is compromised.
C) The performance of the encryption process is degraded due to key retrieval times.
D) Key rotation becomes more complex and time-consuming.
4
7 comments
Practice Question!
skool.com/cybersecurity-study-group
Share resources, get advice, and connect with peers studying cybersecurity. Join our CISSP study group and connect with fellow professionals today!
Leaderboard (30-day)
1
+45
2
+17
3
+14
4
+12
5
+11
Powered by