Amazon Exam DAS-C01 Topic 2 Question 78 Discussion

Actual exam question for Amazon's DAS-C01 exam

Question #: 78
Topic #: 2

A company uses Amazon Redshift as its data warehouse. The Redshift cluster is not encrypted. A data analytics specialist needs to use hardware security module (HSM) managed encryption keys to encrypt the data that is stored in the Redshift cluster.

Which combination of steps will meet these requirements? (Select THREE.)

AStop all write operations on the source cluster. Unload data from the source cluster.

BCopy the data to a new target cluster that is encrypted with AWS Key Management Service (AWS KMS).

CModify the source cluster by activating AWS CloudHSM encryption. Configure Amazon Redshift to automatically migrate data to a new encrypted cluster.

DModify the source cluster by activating encryption from an external HSM. Configure Amazon Redshift to automatically migrate data to a new encrypted cluster.

ECopy the data to a new target cluster that is encrypted with an HSM from AWS CloudHSM.

FRename the source cluster and the target cluster after the migration so that the target cluster is using the original endpoint.

Show Suggested Answer

Suggested Answer: B

https://aws.amazon.com/jp/about-aws/whats-new/2020/03/announcing-column-level-access-control-for-amazon-redshift/

by Arlette at Aug 07, 2023, 11:55 AM

Limited Time Offer

25%

Off

Get Premium DAS-C01 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel

Currently there are no comments in this discussion, be the first to comment!