Oracle Exam 1Z0-1072-25 Topic 4 Question 7 Discussion

Actual exam question for Oracle's 1Z0-1072-25 exam

Question #: 7
Topic #: 4

[All 1Z0-1072-25 Questions]

Which TWO statements about the Oracle Cloud Infrastructure (OCI) File Storage Service are accurate?

ACommunication with file systems in a mount target is encrypted via HTTPS.

BCustomers can encrypt data in their file system using their own Vault encryption key.

CCustomers can encrypt the communication to a mount target via export options.

DFile systems use Oracle-managed keys by default.

Show Suggested Answer

Suggested Answer: B, D

Oracle Cloud Infrastructure (OCI) File Storage Service offers robust encryption capabilities to ensure data security.

B . Customer-Managed Encryption: Customers can choose to encrypt their data using their own keys stored in the OCI Vault service. This gives customers control over their encryption keys and enhances data security.

D . Oracle-Managed Encryption: By default, all data stored in OCI File Storage is encrypted using Oracle-managed keys. This ensures that data is encrypted at rest without requiring any action from the customer.

Incorrect Statements:

A . Communication is not encrypted via HTTPS when accessing file systems; instead, encryption in transit is typically managed via NFS over TLS.

C . Encryption of communication to a mount target is handled via network configurations, not through export options.

Oracle Cloud Infrastructure Documentation: File Storage Encryption

by Alfreda at Apr 08, 2025, 01:23 PM

Limited Time Offer

25%

17 days ago

B and D seem to be the correct answers. I'm pretty sure OCI File Storage Service uses Oracle-managed keys by default, and customers can bring their own encryption keys too.

upvoted 0 times

...