46 Chapter 2 ■ Asset Security (Domain 2)
- Which one of the following is not considered PII under U.S. federal government
regulations?
A. Name
B. Social security number
C. Student ID number
D. ZIP code - What type of health information is the Health Insurance Portability and Accountability
Act required to protect?
A. PII
B. PHI
C. SHI
D. HPHI - What encryption algorithm would provide strong protection for data stored on a USB
thumb drive?
A. TLS
B. SHA1
C. AES
D. DES - Lauren’s multinational company wants to ensure compliance with the EU GDPR. Which
principle of the GDPR states that the individual should have the right to receive personal
information concerning himself or herself and share it with another data controller?
A. Onward transfer
B. Data integrity
C. Enforcement
D. Data portability - What is the best method to sanitize a solid-state drive (SSD)?
A. Clearing
B. Zero fill
C. Disintegration
D. Degaussing