Amazon Exam DVA-C01 Topic 2 Question 35 Discussion

Actual exam question for Amazon's DVA-C01 exam

Question #: 35
Topic #: 2

A company requires objects that are stored in Amazon S3 to be encrypted. The company is currently using server-side encryption with AWS KMS managed encryption keys (SSE-KMS) A developer needs to optimize the cost-effectiveness of the encryption mechanism without negatively affecting performance

What should the developed to meet these requirements'?

AChange the encryption type to customer-provided keys

BConfigure the S3 bucket to use an S3 Bucket Key for SSE-KMS

CUse S3 bucket policies to limit the principals who can create objects.

DUse a custom policy to limit the number of AWS KMS calls that are allowed

Show Suggested Answer

Suggested Answer: B

by Rhea at May 04, 2022, 12:31 PM

Limited Time Offer

25%

Off

Get Premium DVA-C01 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel

Currently there are no comments in this discussion, be the first to comment!