Google Cloud Professional Data Engineer — Question 281

You work for a financial institution that lets customers register online. As new customers register, their user data is sent to Pub/Sub before being ingested into
BigQuery. For security reasons, you decide to redact your customers' Government issued Identification Number while allowing customer service representatives to view the original values when necessary. What should you do?

Answer options

• A. Use BigQuery's built-in AEAD encryption to encrypt the SSN column. Save the keys to a new table that is only viewable by permissioned users.
• B. Use BigQuery column-level security. Set the table permissions so that only members of the Customer Service user group can see the SSN column.
• C. Before loading the data into BigQuery, use Cloud Data Loss Prevention (DLP) to replace input values with a cryptographic hash.
• D. Before loading the data into BigQuery, use Cloud Data Loss Prevention (DLP) to replace input values with a cryptographic format-preserving encryption token.

Correct answer: D

Explanation

The correct choice is D because using Cloud Data Loss Prevention (DLP) to apply format-preserving encryption allows the data to be redacted while maintaining its format, enabling customer service representatives to access the original values when necessary. Option A is incorrect because AEAD encryption does not allow for format preservation. Option B fails to redact the data before ingestion, which is necessary for security. Option C uses a cryptographic hash, which makes original values irretrievable, thus not meeting the requirement for customer service access.