Multiple Choice
A company is preparing to deploy a data lake on AWS. A solutions architect must define the encryption strategy tor data at rest m Amazon S3/ The company's security policy states: Keys must be rotated every 90 days. Strict separation of duties between key users and key administrators must be implemented. Auditing key usage must be possible. What should the solutions architect recommend?
A) Server-side encryption with AWS KMS managed keys (SSE-KMS) with customer managed customer master keys (CMKs)
B) Server-side encryption with AWS KMS managed keys (SSE-KMS) with AWS managed customer master keys (CMKs)
C) Server-side encryption with Amazon S3 managed keys (SSE-S3) with customer managed customer master keys (CMKs)
D) Server-side encryption with Amazon S3 managed keys (SSE-S3) with AWS managed customer master keys (CMKs)
Correct Answer:
Verified
Correct Answer:
Verified
Q295: A user owns a MySQL database that
Q296: A company has an Amazon EC2 instance
Q297: A company requires a durable backup storage
Q298: A company runs a multi-tier web application
Q299: An application hosted on AWS is experiencing
Q301: A solutions architect must create a highly
Q302: A solutions architect is designing the cloud
Q303: A company is designing a new application
Q304: A company wants to improve the availability
Q305: An online photo application lets users upload