This content is open to everyone — sign in to save your progress, earn points, and unlock module exams.
Topic 4.3 of Data Protection for Cloud Infrastructure
Redaction patterns, tokenization mechanics, obfuscation techniques, and cryptographic erasure.
By the end of this topic, you will
Quadrant 1 · e-Tutorial
Quadrant 2 · e-Content
Quadrant 3 · Web Resources
Downloadable reference material
External links
PCI-DSS Tokenization Guidelines
PCI SSC guidelines for tokenization products and their role in reducing PCI-DSS scope.
PCI-DSS Tokenization Guidelines
PCI SSC guidelines for tokenization products and their role in reducing PCI-DSS scope.
AWS Macie — Sensitive Data Discovery
AWS Macie documentation for automated PII discovery and protection in S3.
AWS Macie — Sensitive Data Discovery
AWS Macie documentation for automated PII discovery and protection in S3.
Google Cloud DLP — Data Loss Prevention
GCP Cloud DLP documentation for inspecting, classifying, and de-identifying sensitive data.
Google Cloud DLP — Data Loss Prevention
GCP Cloud DLP documentation for inspecting, classifying, and de-identifying sensitive data.
NIST SP 800-188: De-Identifying Government Datasets
NIST guidance on de-identification techniques and their limits for government data.
NIST SP 800-188: De-Identifying Government Datasets
NIST guidance on de-identification techniques and their limits for government data.
Quadrant 4 · Self-Assessment
Data Protection in the Cloud
Envelope encryption, AES modes, post-quantum cryptography, tokenisation, PKI, key management models, and IAM.
Cloud Security: Complete Assessment
Comprehensive 120-question assessment covering all six chapters of the Cloud Security eBook 2026.