AIncorrect
At rest encrypts data in transit, while in transit encrypts stored data.
The targets of at rest and in transit are reversed.
The correct mapping is at rest = stored data, in transit = data in transit, so this is incorrect.
In a company's security training, the team is reviewing data encryption for AI systems. Which is the MOST accurate explanation of the difference between encryption at rest and encryption in transit?
1 / 1
Select an answer
CorrectD
Explanation
A question about choosing the difference between encryption at rest and encryption in transit.
- 1「encryption at rest」Protects stored data
- 2「encryption in transit」Protects data in transit
BIncorrect
At rest refers to the key management method, and in transit refers to the communication speed.
The distinction between at rest and in transit is about which state the data is in when it is encrypted, not a classification of key management method or communication speed.
It mistakes the target of the terms, so this is incorrect.
CIncorrect
At rest refers to setting access permissions, and in transit refers to backups.
Access permissions are IAM, and backups are data replication, and neither is an explanation of an encryption phase.
At rest and in transit are about the difference in the encryption target (stored / in transit), so this is incorrect.
DCorrect
At rest encrypts stored data, while in transit encrypts data moving over the network.
Correct. Encryption at rest encrypts stored data, and encryption in transit encrypts data in transit moving over the network. The target they protect (stored vs. communication) is different.
Key Takeaway
Encryption is distinguished by the target it protects.
- At rest: encrypts data stored on S3 or disks (with KMS and the like).
- In transit: encrypts data in transit moving over the network (with TLS and the like).
The difference is whether the target is 'stored data' or 'data in transit.' The two are combined to protect data.