nerdexam
Amazon

DVA-C02 · Question #764

A developer is working on an application that will store protected health information (PHI) in an Amazon RDS database. The developer applies encryption to the database. The developer must also encrypt

Sign in or unlock DVA-C02 to reveal the answer and full explanation for question #764. The question stem and answer options stay visible for context.

Submitted by carlos_mx· Mar 5, 2026Security

Question

A developer is working on an application that will store protected health information (PHI) in an Amazon RDS database. The developer applies encryption to the database. The developer must also encrypt the PHI data separately to prevent administrators from accessing the data. Because some of the PHI data files are large, the developer must encrypt the PHI data in the application locally before saving the data to the database. Which solution will meet these requirements in the MOST secure way?

Options

  • ACreate an AWS KMS customer managed key. Use the KMS Encrypt operation to encrypt the PHI
  • BGenerate a 256-bit AES encryption key. Store the key in base64-encoded format in the
  • CConfigure the database to use an AWS KMS managed key for encryption.
  • DCreate an AWS KMS customer managed key. Use envelope encryption to encrypt the PHI data.

Unlock DVA-C02 to see the answer

You've previewed enough free DVA-C02 questions. Unlock DVA-C02 for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.

Full DVA-C02 Practice