Question 37
Domain 2: Data Protection and Identity SecurityWhich encryption method protects data while it is being transmitted between a user and a cloud service?
Correct answer: B
Explanation
Encryption in transit protects data as it moves between a user and a cloud service, preventing interception during transmission. It is the standard method for securing information "while it is being transmitted" over a network, unlike encryption at rest, which protects stored data.
Why each option is right or wrong
A. Encryption at rest
B. Encryption in transit
The relevant control is encryption applied to data moving over a network path, typically implemented with TLS/SSL under common security frameworks; it protects information during transmission between endpoints rather than after storage. In this question, the phrase "while it is being transmitted" is the decisive clue, because stored-data protections such as encryption at rest do not address interception in transit.
C. Encryption in use
D. Tokenization