Deal of The Day! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

Pegasystems PEGACPLSA88V1 Exam - Topic 2 Question 15 Discussion

Actual exam question for Pegasystems's PEGACPLSA88V1 exam
Question #: 15
Topic #: 2
[All PEGACPLSA88V1 Questions]

In a Human Resources application, the Social Security Number (SSN) and date of birth details for employees are confidential, and business requirements state that only the HR Manager can see these details.

What is the best approach to mask the information for other users everywhere in the application?

Show Suggested Answer Hide Answer
Suggested Answer: A

Using the PropertyRead access control policy for the SSN and date of birth ensures that only users with the appropriate access (e.g., HR Manager) can view these details. This approach masks the information for other users.

Reference:

Pega best practices for data security and access control recommend using PropertyRead policies to restrict access to sensitive information.

Therefore, the correct answer is:

A . Use the PropertyRead access control policy for the SSN and date of birth.


by Ronny at Jun 28, 2024, 07:36 PM

Limited Time Offer

25%

Off

Get Premium PEGACPLSA88V1 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

0/2000 characters
Submit Cancel
Karl
4 months ago
Isn't encrypting the data (D) the safest choice?
upvoted 0 times
...
Leatha
4 months ago
Wait, can we really just mask it like that? Sounds too easy!
upvoted 0 times
...
Rosendo
4 months ago
A is just a read policy, not enough protection.
upvoted 0 times
...
Gerald
4 months ago
I disagree, C seems more secure to me.
upvoted 0 times
...
Johnathon
5 months ago
I think option B is the best way to go!
upvoted 0 times
...
Veronika
5 months ago
I thought encrypting the properties was more about securing data at rest, not just masking it in the UI. Is that really the best approach?
upvoted 0 times
...
Salome
5 months ago
I feel like the Access When rule could be a good option too, but I can't recall if it covers all scenarios for masking.
upvoted 0 times
...
Ngoc
5 months ago
I think adding a privilege rule for the UI controls makes sense, especially since it directly affects what users can see.
upvoted 0 times
...
Noelia
5 months ago
I remember we discussed access control policies in class, but I'm not sure if PropertyRead is the right choice here.
upvoted 0 times
...
Sabina
5 months ago
Okay, I've got a strategy here. I think the key is to focus on the business requirement that only the HR Manager can see the SSN and date of birth details. So option C, using an Access When rule for the HR Manager role, seems like the way to go. I'll mark that one down.
upvoted 0 times
...
Viva
5 months ago
Hmm, I'm a bit unsure about this one. I'm trying to decide between options A and D. Both seem like they could work, but I'm not sure which one is the "best" approach. I'll need to think this through a bit more.
upvoted 0 times
...
Alva
5 months ago
This seems like a straightforward access control question. I think option A, using the PropertyRead access control policy, is the best approach to mask the confidential information for other users.
upvoted 0 times
...
Glenn
6 months ago
I'm a little confused by this question. There are a few different options, and I'm not sure which one is the most appropriate. I think I'll need to review the access control policies and privileges in more detail before I can confidently answer this.
upvoted 0 times
...
Raylene
6 months ago
Turning off the AWS managed encryption doesn't seem like it would help with the performance issues. That's more of a security concern, not a performance one.
upvoted 0 times
...
Dawne
6 months ago
This seems like a pretty straightforward question. I'd start by thinking about the key requirements for a distribution center - things like storage capacity, throughput, and customer service. The type of construction material is probably one of the first things to consider since it impacts the overall design and layout.
upvoted 0 times
...
Hannah
6 months ago
Okay, I think I've got this. The primary purpose is to manage the consequences of disasters that disrupt the facility's ability to provide care. That seems to be the most comprehensive and overarching goal of an emergency preparedness program.
upvoted 0 times
...
Leota
2 years ago
Wait, we're supposed to be protecting confidential data, not playing hide-and-seek with it. Encrypt that stuff, I say!
upvoted 0 times
...
Shaniqua
2 years ago
I think the Access When rule is the best option here. It's more flexible than just hiding the fields, and you can still give the HR Manager access when they need it.
upvoted 0 times
Nickolas
2 years ago
But with PropertyRead, you can easily manage access to the SSN and date of birth without complicating things.
upvoted 0 times
...
Michel
2 years ago
I think Property Encrypt would be more secure, though. It adds an extra layer of protection to the data.
upvoted 0 times
...
Shawna
2 years ago
I agree, using an Access When rule allows for more control over who can see the information.
upvoted 0 times
...
Loreen
2 years ago
C) Add an Access When rule for access role objects of the HR Manager role.
upvoted 0 times
...
Bev
2 years ago
B) Add the privilege rule for the UI controls that display the SSN and date of birth.
upvoted 0 times
...
Keneth
2 years ago
A) Use the PropertyRead access control policy for the SSN and date of birth.
upvoted 0 times
...
...
Willard
2 years ago
I prefer option D because encrypting the data adds an extra layer of security.
upvoted 0 times
...
Daryl
2 years ago
I'm not sure, I think option C could also work if we limit access based on roles.
upvoted 0 times
...
Geraldo
2 years ago
Hmm, I don't know. Isn't there a way to just, I don't know, magic it away or something? Like, make it disappear with a wave of the wand?
upvoted 0 times
Merissa
2 years ago
B) Add the privilege rule for the UI controls that display the SSN and date of birth.
upvoted 0 times
...
Lynelle
2 years ago
A) Use the PropertyRead access control policy for the SSN and date of birth.
upvoted 0 times
...
...
Mollie
2 years ago
I'm not so sure about that. Encrypting the data could make it harder to work with, and the PropertyRead policy might be a simpler solution.
upvoted 0 times
...
Nana
2 years ago
I agree with Vanda, option A seems like the most secure way to protect sensitive information.
upvoted 0 times
...
Lazaro
2 years ago
Option D is definitely the way to go. Encrypting the data is the most secure way to protect confidential information like SSN and date of birth.
upvoted 0 times
Dorethea
2 years ago
I agree, using Property Encrypt access control policy for the SSN and date of birth is the best approach to ensure only the HR Manager can see the details.
upvoted 0 times
...
Isadora
2 years ago
Option D is definitely the way to go. Encrypting the data is the most secure way to protect confidential information like SSN and date of birth.
upvoted 0 times
...
...
Vanda
2 years ago
I think option A is the best approach because it restricts access to the actual data.
upvoted 0 times
...

Save Cancel