Multiple Choice
A company is sending historical datasets to Amazon S3 for storage. A data engineer at the company wants to make these datasets available for analysis using Amazon Athena. The engineer also wants to encrypt the Athena query results in an S3 results location by using AWS solutions for encryption. The requirements for encrypting the query results are as follows: Use custom keys for encryption of the primary dataset query results. Use generic encryption for all other query results. Provide an audit trail for the primary dataset queries that shows when the keys were used and by whom. Which solution meets these requirements?
A) Use server-side encryption with S3 managed encryption keys (SSE-S3) for the primary dataset. Use SSE-S3 for the other datasets.
B) Use server-side encryption with customer-provided encryption keys (SSE-C) for the primary dataset. Use server-side encryption with S3 managed encryption keys (SSE-S3) for the other datasets.
C) Use server-side encryption with AWS KMS managed customer master keys (SSE-KMS CMKs) for the primary dataset. Use server-side encryption with S3 managed encryption keys (SSE-S3) for the other datasets.
D) Use client-side encryption with AWS Key Management Service (AWS KMS) customer managed keys for the primary dataset. Use S3 client-side encryption with client-side keys for the other datasets.
Correct Answer:
Verified
Correct Answer:
Verified
Q110: A large company has a central data
Q111: A data analyst is designing a solution
Q112: A company wants to provide its data
Q113: A software company hosts an application on
Q114: A company uses Amazon Redshift as its
Q116: A company has developed an Apache Hive
Q117: An airline has been collecting metrics on
Q118: A banking company wants to collect large
Q119: A hospital uses wearable medical sensor devices
Q120: A company's data analyst needs to ensure