Certified Cloud Security Professional (CCSP) — Question 336

In order to comply with regulatory requirements, which of the following secure erasure methods would be available to a cloud customer using volume storage within the IaaS service model?

Answer options

• A. Demagnetizing
• B. Shredding
• C. Degaussing
• D. Cryptographic erasure

Correct answer: D

Explanation

Cryptographic erasure is effective for ensuring compliance as it involves encrypting data and then deleting the encryption keys, rendering the data inaccessible. The other methods, like demagnetizing, shredding, and degaussing, are physical destruction techniques that may not be applicable to virtualized environments or cloud storage where data may not reside on physical media controlled by the user.