Certified Information Systems Security Professional (CISSP) — Question 69

Which is the BEST control to meet the Statement on Standards for Attestation Engagements 18 (SSAE-18) confidentiality category?

Answer options

• A. File hashing
• B. Storage encryption
• C. Data retention policy
• D. Data processing

Correct answer: B

Explanation

Storage encryption is the best control for ensuring confidentiality as it protects data at rest from unauthorized access. While file hashing can verify data integrity, it does not provide confidentiality. A data retention policy governs how long data is kept but does not protect it. Data processing does not directly relate to confidentiality controls.