A Developer is working on an application that handles 10MB documents that contain highly-sensitive data. The application will use AWS KMS to perform client-side encryption. What steps must be followed?
A) Invoke the Encrypt API passing the plaintext data that must be encrypted, then reference the customer managed key ARN in the KeyId parameter
B) Invoke the GenerateRandom API to get a data encryption key, then use the data encryption key to encrypt the data
C) Invoke the GenerateDataKey API to retrieve the encrypted version of the data encryption key to encrypt the data
D) Invoke the GenerateDataKey API to retrieve the plaintext version of the data encryption key to encrypt the data
Correct Answer:
Verified
Q212: An AWS Lambda function must access an
Q213: A Developer must deploy a new AWS
Q214: A Developer has been asked to make
Q215: A Developer is investigating an issue whereby
Q216: A Developer wants to debug an application
Q218: A company needs to distribute firmware updates
Q219: A company maintains an application responsible for
Q220: A Developer wants to enable AWS X-Ray
Q221: A Developer accesses AWS CodeCommit over SSH.
Q222: A Developer has been asked to build
Unlock this Answer For Free Now!
View this answer and more for free by performing one of the following actions
Scan the QR code to install the App and get 2 free unlocks
Unlock quizzes for free by uploading documents