CompTIA Security+ (SY0-601) — Question 399

A company must ensure sensitive data at rest is rendered unreadable. Which of the following will the company most likely use?

Answer options

• A. Hashing
• B. Tokenization
• C. Encryption
• D. Segmentation

Correct answer: C

Explanation

Encryption is the most effective way to render sensitive data unreadable while it is stored. Hashing is a one-way function that does not allow for recovery of the original data, making it unsuitable for this purpose. Tokenization replaces sensitive data with non-sensitive equivalents but does not directly make the data unreadable. Segmentation is a method of dividing networks but does not address data readability.