IBM C1000-130 Exam - Topic 4 Question 81 Discussion

The Operations Dashboard in IBM Cloud Pak for Integration (CP4I) v2021.2 is used for monitoring and managing integration components. When securing data at rest, the supported encryption method in CP4I includes Portworx, which provides enterprise-grade storage and encryption solutions.

Why Option B (Portworx) is Correct:

Portworx is a Kubernetes-native storage solution that supports encryption of data at rest.

It enables persistent storage for OpenShift workloads, including Cloud Pak for Integration components.

Portworx provides AES-256 encryption, ensuring that data at rest remains secure.

It allows for role-based access control (RBAC) and Key Management System (KMS) integration for secure key handling.

Explanation of Incorrect Answers:

A . AES128 Incorrect

While AES encryption is used for data protection, AES128 is not explicitly mentioned as the standard for Operations Dashboard storage encryption.

AES-256 is the preferred encryption method when using Portworx or IBM-provided storage solutions.

C . base64 Incorrect

Base64 is an encoding scheme, not an encryption method.

It does not provide security for data at rest, as base64-encoded data can be easily decoded.

D . NFS Incorrect

Network File System (NFS) does not inherently provide encryption for data at rest.

NFS can be used for storage, but additional encryption mechanisms are needed for securing data at rest.

IBM Cloud Pak for Integration (CP4I) v2021.2 Administration Reference:

IBM Cloud Pak for Integration Security Best Practices

Portworx Data Encryption Documentation

IBM Cloud Pak for Integration Storage Considerations

Red Hat OpenShift and Portworx Integration

https://www.ibm.com/docs/en/cloud-paks/cp-integration/2020.3?topic=configuration-installation