Salesforce Exam Security and Privacy Accredited Professional Topic 2 Question 45 Discussion

Actual exam question for Salesforce's Security and Privacy Accredited Professional exam

Question #: 45
Topic #: 2

A customer prefers to generate an encryption key for Salesforce to use. They prefer to generate it manually, once a year.

What key management capability should the admin advise them to use?

AExport the tenant secret

BImplement a custom Apex key generation class

CBring your own key, plus opt-out of key derivation

DUpload your own tenant secret

Show Suggested Answer

Suggested Answer: A

by Naomi at Dec 04, 2024, 02:01 PM

Limited Time Offer

25%

Off

Contribute your Thoughts:

Submit Cancel

3 days ago

A) Export the tenant secret? Really? That's just asking for trouble. I'll stick with a custom Apex class, thank you very much.

upvoted 0 times

...

15 days ago

D) Upload your own tenant secret is the obvious choice. Why would I want to generate a new key every year? That's way too much work!

upvoted 0 times

...

16 days ago

C) Bring your own key, plus opt-out of key derivation seems like the way to go. I like having control over my encryption keys.

upvoted 0 times

...