Multiple Choice
A company is preparing to store confidential data in Amazon S3. For compliance reasons, the data must be encrypted at rest. Encryption key usage must be logged for auditing purposes. Keys must be rotated every year. Which solution meets these requirements and is the MOST operationally efficient?
A) Server-side encryption with customer-provided keys (SSE-C)
B) Server-side encryption with Amazon S3 managed keys (SSE-S3)
C) Server-side encryption with AWS KMS (SSE-KMS) customer master keys (CMKs) with manual rotation
D) Server-side encryption with AWS KMS (SSE-KMS) customer master keys (CMKs) with automatic rotation
Correct Answer:
Verified
Correct Answer:
Verified
Q249: A company is running an ASP.NET MVC
Q250: A company is running a global application.
Q251: A company with facilities in North America,
Q252: A company's legacy application is currently relying
Q253: A company hosts its website on AWS.
Q255: An ecommerce company is creating an application
Q256: A company recently deployed a two-tier application
Q257: A company runs its infrastructure on AWS
Q258: A company is creating a web application
Q259: A solutions architect must migrate a Windows