AmazonAmazon
SAA-C03 · Question #10
SAA-C03 Question #10: Real Exam Question with Answer & Explanation
Sign in or unlock SAA-C03 to reveal the answer and full explanation for question #10. The question stem and answer options stay visible for context.
Submitted by daniela_cl· Mar 4, 2026Vulnerability Discovery and Analysis
Question
A company is preparing to store confidential data in Amazon S3. For compliance reasons, the data must be encrypted at rest. Encryption key usage must be logged for auditing purposes. Keys must be rotated every year. Which solution meets these requirements and is the MOST operationally efficient?
Options
- AServer-side encryption with customer-provided keys (SSE-C)
- BServer-side encryption with Amazon S3 managed keys (SSE-S3)
- CServer-side encryption with AWS KMS keys (SSE-KMS) with manual rotation
- DServer-side encryption with AWS KMS keys (SSE-KMS) with automatic rotation
Unlock SAA-C03 to see the answer
You've previewed enough free SAA-C03 questions. Unlock SAA-C03 for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.