Certified Ethical Hacker (CEH) — Question 7

Which of the following is considered the best way to protect Personally Identifiable Information (PII) from Web application vulnerabilities?

Answer options

• A. Use cryptographic storage to store all PII
• B. Use encrypted communications protocols to transmit PII
• C. Use full disk encryption on all hard drives to protect PII
• D. Use a security token to log into all Web applications that use PII

Correct answer: A

Explanation

Using cryptographic storage for PII ensures that the data is secured at rest, making it inaccessible even if a breach occurs. While encrypted communications are important for data in transit, they do not protect stored data, which is why options B, C, and D are less effective in this context.