Multiple Choice
A developer is building a highly secure healthcare application using serverless components. This application requires writing temporary data to /tmp storage on an AWS Lambda function. How should the developer encrypt this data?
A) Enable Amazon EBS volume encryption with an AWS KMS CMK in the Lambda function configuration so that all storage attached to the Lambda function is encrypted.
B) Set up the Lambda function with a role and key policy to access an AWS KMS CMK. Use the CMK to generate a data key used to encrypt all data prior to writing to /tmp storage.
C) Use OpenSSL to generate a symmetric encryption key on Lambda startup. Use this key to encrypt the data prior to writing to /tmp storage.
D) Use an on-premises hardware security module (HSM) to generate keys, where the Lambda function requests a data key from the HSM and uses that to encrypt data on all requests to the function.
Correct Answer:
Verified
Correct Answer:
Verified
Q120: A Developer is writing a mobile application
Q121: A company is developing a report executed
Q122: If a message is retrieved from a
Q123: A company processes incoming documents from an
Q124: An application takes 40 seconds to process
Q126: A Developer created configuration specifications for an
Q127: Games-R-Us is launching a new game app
Q128: Which of the following are correct statements
Q129: A developer has created a Node.js web
Q130: An Amazon RDS database instance is used