Multiple Choice
A financial services company uses Amazon RDS for Oracle with Transparent Data Encryption (TDE) . The company is required to encrypt its data at rest at all times. The key required to decrypt the data has to be highly available, and access to the key must be limited. As a regulatory requirement, the company must have the ability to rotate the encryption key on demand. The company must be able to make the key unusable if any potential security breaches are spotted. The company also needs to accomplish these tasks with minimum overhead. What should the database administrator use to set up the encryption to meet these requirements?
A) AWS CloudHSM
B) AWS Key Management Service (AWS KMS) with an AWS managed key
C) AWS Key Management Service (AWS KMS) with server-side encryption
D) AWS Key Management Service (AWS KMS) CMK with customer-provided material
Correct Answer:
Verified
Correct Answer:
Verified
Q79: A company has a production Amazon Aurora
Q80: A Database Specialist is creating Amazon DynamoDB
Q81: A company is running a two-tier ecommerce
Q82: A Database Specialist is migrating an on-premises
Q83: A company is building a new web
Q85: A gaming company is developing a new
Q86: The Development team recently executed a database
Q87: A company has multiple applications serving data
Q88: A company has an application that uses
Q89: A finance company needs to make sure