Certificate of Cloud Security Knowledge (CCSK) — Question 52

How is encryption managed on multi-tenant storage?

Answer options

• A. Single key for all data owners
• B. One key per data owner
• C. Multiple keys per data owner
• D. The answer could be A, B, or C depending on the provider
• E. C for data subject to the EU Data Protection Directive; B for all others

Correct answer: B

Explanation

The correct answer is B because managing encryption with one key per data owner ensures that each owner's data is securely separated, minimizing risk. Option A is incorrect as using a single key for all data owners would compromise security. Options C, D, and E complicate the key management process unnecessarily or are conditional, which is not the best practice for encryption.