DAS-C01 · Question #126
DAS-C01 Question #126: Real Exam Question with Answer & Explanation
Sign in or unlock DAS-C01 to reveal the answer and full explanation for question #126. The question stem and answer options stay visible for context.
Question
A company is sending historical datasets to Amazon S3 for storage. A data engineer at the company wants to make these datasets available for analysis using Amazon Athena. The engineer also wants to encrypt the Athena query results in an S3 results location by using AWS solutions for encryption. The requirements for encrypting the query results are as follows: - Use custom keys for encryption of the primary dataset query results. - Use generic encryption for all other query results. - Provide an audit trail for the primary dataset queries that shows when the keys were used and by whom. Which solution meets these requirements?
Options
- AUse server-side encryption with S3 managed encryption keys (SSE-S3) for the primary dataset.
- BUse server-side encryption with customer-provided encryption keys (SSE-C) for the primary
- CUse server-side encryption with AWS KMS managed customer master keys (SSE-KMS CMKs)
- DUse client-side encryption with AWS Key Management Service (AWS KMS) customer managed
Unlock DAS-C01 to see the answer
You've previewed enough free DAS-C01 questions. Unlock DAS-C01 for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.