New Year Sale 2026! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

APMG-International ISO-IEC-27001-Foundation Exam - Topic 7 Question 2 Discussion

Actual exam question for APMG-International's ISO-IEC-27001-Foundation exam
Question #: 2
Topic #: 7
[All ISO-IEC-27001-Foundation Questions]

Which statement describes the Classification of information control in Annex A of ISO/IEC 27001?

Show Suggested Answer Hide Answer
Suggested Answer: B

Comprehensive and Detailed Explanation From Exact Extract ISO/IEC 27002:2022 standards:

Annex A.5.12 (Classification of information) states:

''Information should be classified according to the information security needs of the organization based on confidentiality, integrity and availability.''

This aligns directly with option B. Option A (labelling) is a separate control (Annex A.5.13). Option C (security perimeters) is under physical controls (Annex A.7.1). Option D (access control rules) relates to Annex A.5.15 and A.8.2.

Thus, the verified correct statement for the Classification of information control is B.


by Wilson at Oct 03, 2025, 07:16 AM

Limited Time Offer

25%

Off

Get Premium ISO-IEC-27001-Foundation Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

0/2000 characters
Submit Cancel
Una
2 months ago
I didn't realize there were so many aspects to consider!
upvoted 0 times
...
Veronique
2 months ago
Totally agree with B! It's the foundation of info classification.
upvoted 0 times
...
Tamra
3 months ago
B is the right one! It's all about confidentiality, integrity, and availability.
upvoted 0 times
...
Goldie
3 months ago
Wait, are we sure about that? I thought it was more about labeling.
upvoted 0 times
...
Linn
3 months ago
A is important too, but B covers the core principles.
upvoted 0 times
...
Ashleigh
3 months ago
I’m a bit confused, but I think classification is about understanding the value of information, which might relate to B. But I could be wrong!
upvoted 0 times
...
Galen
3 months ago
I feel like I’ve seen a question similar to this before, and it was about access controls. So maybe D could be relevant too?
upvoted 0 times
...
Felicitas
4 months ago
I remember something about confidentiality, integrity, and availability being key principles in information security, so B might be the right choice.
upvoted 0 times
...
Hyman
4 months ago
I think the classification of information is more about how we label assets, so maybe A is correct? But I’m not entirely sure.
upvoted 0 times
...
Reita
4 months ago
Okay, let me think this through. The question is asking about information control in Annex A, so I need to focus on that specific section. I'll eliminate the options that don't seem directly relevant, and then decide between the remaining choices.
upvoted 0 times
...
Carey
4 months ago
Ah, I've got this one! B is definitely the right answer. The question is specifically asking about information classification, and that's what B addresses. I feel pretty confident about this.
upvoted 0 times
...
Leontine
4 months ago
Hmm, this is a tricky one. I'm leaning towards B, but I'm not 100% sure. Maybe I should quickly skim through the Annex A section in the textbook to refresh my memory on the key points about information classification.
upvoted 0 times
...
Rashad
5 months ago
I'm a bit confused on this one. The options seem to cover a range of information security concepts, not just classification. I'll need to review my notes on Annex A to make sure I understand the specifics.
upvoted 0 times
...
Nana
5 months ago
I think B is the best answer here. The question is asking about the classification of information control, and B seems to directly address that by mentioning confidentiality, integrity, and availability.
upvoted 0 times
...

Save Cancel