Practice Test 4 | AWS Certified Solutions Architect Associate | SAA-C03 | Dumps | Mock Test

Question 36

You need to ensure that data stored in S3 is encrypted but do not want to manage the encryption keys. Which of the following encryption mechanisms can be used in this case?

A. SSE-S3

B. SSE-C

C. SSE-KMS

D. SSE-SSL

Answer

Explanation:

Answer – A

AWS Documentation mentions the
following on Encryption keys:

SSE-S3
requires that Amazon S3 manages the data and master encryption keys.
SSE-C
requires that you manage the encryption keys.
SSE-KMS
requires that AWS manages the data key but you manage the master key in AWS KMS.

For more information on using the Key
Management service for S3, please visit the below URL:

https://docs.aws.amazon.com/kms/latest/developerguide/services-s3.html

Pages: 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65

SAA-C03

Practice Test 4 | AWS Certified Solutions Architect Associate | SAA-C03 | Dumps | Mock Test

Question 36

Answer

Explanation:

Ads Blocker Detected!!!