CV0-004 Domain 2: Cloud Security

A hybrid environment must support a goal to encrypt data at rest in cloud without changing application code. What should you implement?

Multiple choice — select one answer

Answer choices

  1. a. Provider-managed encryption and customer keys
  2. b. Role-based access with regular reviews
  3. c. Email secrets (not recommended for production workloads)
  4. d. Secrets vault with rotation

Architectural breakdown & explanation

Encryption protects stored data.

Correct answer(s): a. Provider-managed encryption and customer keys

Exam domain: Domain 2: Cloud Security (25% weight on the official guide).

Official documentation & study links

Practice this certification

This page is one question from the CompTIA Cloud+ bank. Run a full timed practice exam with domain-weighted random questions in your browser.