Deal of The Day! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

APMG-International ISO-IEC-27001-Foundation Exam - Topic 7 Question 2 Discussion

Which statement describes the Classification of information control in Annex A of ISO/IEC 27001?
B) Ensures that information is classified based on confidentiality, integrity and availability
A) Ensures that all information assets are labelled with their classification
C) Ensures that security perimeters are used to protect assets
D) Ensures the rules to control physical and logical access apply to assets

APMG-International ISO-IEC-27001-Foundation Exam - Topic 7 Question 2 Discussion

Actual exam question for APMG-International's ISO-IEC-27001-Foundation exam
Question #: 2
Topic #: 7
[All ISO-IEC-27001-Foundation Questions]

Which statement describes the Classification of information control in Annex A of ISO/IEC 27001?

Show Suggested Answer Hide Answer
Suggested Answer: B

Comprehensive and Detailed Explanation From Exact Extract ISO/IEC 27002:2022 standards:

Annex A.5.12 (Classification of information) states:

''Information should be classified according to the information security needs of the organization based on confidentiality, integrity and availability.''

This aligns directly with option B. Option A (labelling) is a separate control (Annex A.5.13). Option C (security perimeters) is under physical controls (Annex A.7.1). Option D (access control rules) relates to Annex A.5.15 and A.8.2.

Thus, the verified correct statement for the Classification of information control is B.


by Wilson at Oct 03, 2025, 07:16 AM

Limited Time Offer

25%

Off

Get Premium ISO-IEC-27001-Foundation Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

0/2000 characters
Submit Cancel
Una
5 months ago
I didn't realize there were so many aspects to consider!
upvoted 0 times
...
Veronique
5 months ago
Totally agree with B! It's the foundation of info classification.
upvoted 0 times
...
Tamra
6 months ago
B is the right one! It's all about confidentiality, integrity, and availability.
upvoted 0 times
...
Goldie
6 months ago
Wait, are we sure about that? I thought it was more about labeling.
upvoted 0 times
...
Linn
6 months ago
A is important too, but B covers the core principles.
upvoted 0 times
...
Ashleigh
6 months ago
I’m a bit confused, but I think classification is about understanding the value of information, which might relate to B. But I could be wrong!
upvoted 0 times
...
Galen
7 months ago
I feel like I’ve seen a question similar to this before, and it was about access controls. So maybe D could be relevant too?
upvoted 0 times
...
Felicitas
7 months ago
I remember something about confidentiality, integrity, and availability being key principles in information security, so B might be the right choice.
upvoted 0 times
...
Hyman
7 months ago
I think the classification of information is more about how we label assets, so maybe A is correct? But I’m not entirely sure.
upvoted 0 times
...
Reita
7 months ago
Okay, let me think this through. The question is asking about information control in Annex A, so I need to focus on that specific section. I'll eliminate the options that don't seem directly relevant, and then decide between the remaining choices.
upvoted 0 times
...
Carey
7 months ago
Ah, I've got this one! B is definitely the right answer. The question is specifically asking about information classification, and that's what B addresses. I feel pretty confident about this.
upvoted 0 times
...
Leontine
8 months ago
Hmm, this is a tricky one. I'm leaning towards B, but I'm not 100% sure. Maybe I should quickly skim through the Annex A section in the textbook to refresh my memory on the key points about information classification.
upvoted 0 times
...
Rashad
8 months ago
I'm a bit confused on this one. The options seem to cover a range of information security concepts, not just classification. I'll need to review my notes on Annex A to make sure I understand the specifics.
upvoted 0 times
...
Nana
8 months ago
I think B is the best answer here. The question is asking about the classification of information control, and B seems to directly address that by mentioning confidentiality, integrity, and availability.
upvoted 0 times
...

Save Cancel