A company is preparing to deploy a data lake on AWS. A solutions architect must define the encryption strategy tor data at rest m Amazon S3/ The company's security policy states: Keys must be rotated every 90 days. Strict separation of duties between key users and key administrators must be implemented. Auditing key usage must be possible. What should the solutions architect recommend?
A) Server-side encryption with AWS KMS managed keys (SSE-KMS) with customer managed customer master keys (CMKs)
B) Server-side encryption with AWS KMS managed keys (SSE-KMS) with AWS managed customer master keys (CMKs)
C) Server-side encryption with Amazon S3 managed keys (SSE-S3) with customer managed customer master keys (CMKs)
D) Server-side encryption with Amazon S3 managed keys (SSE-S3) with AWS managed customer master keys (CMKs)
Correct Answer:
Verified
Q235: A company runs an online marketplace web
Q236: A company has an application that generates
Q237: A company is running an online transaction
Q238: An ecommerce website is deploying its web
Q239: A company has an API-based inventory reporting
Q241: A solutions architect is developing a multiple-subnet
Q242: A disaster response team is using drones
Q243: A company is preparing to store confidential
Q244: A company has a mobile game that
Q245: A company is storing sensitive user information
Unlock this Answer For Free Now!
View this answer and more for free by performing one of the following actions
Scan the QR code to install the App and get 2 free unlocks
Unlock quizzes for free by uploading documents