SAA-C03 · Question #459
SAA-C03 Question #459: Real Exam Question with Answer & Explanation
Sign in or unlock SAA-C03 to reveal the answer and full explanation for question #459. The question stem and answer options stay visible for context.
Question
A company stores sensitive financial reports in an Amazon S3 bucket. To comply with auditing requirements, the company must encrypt the data at rest. Users must not have the ability to change the encryption method or remove encryption when the users upload data. The company must be able to audit all encryption and storage actions. Which solution will meet these requirements and provide the MOST granular control?
Options
- AEnable default server-side encryption with Amazon S3 managed keys (SSE-S3) for the S3
- BConfigure server-side encryption with AWS KMS (SSE-KMS) keys. Use an S3 bucket policy to
- CUse client-side encryption before uploading the reports. Store the encryption keys in AWS
- DEnable default server-side encryption with Amazon S3 managed keys (SSE-S3). Use AWS
Unlock SAA-C03 to see the answer
You've previewed enough free SAA-C03 questions. Unlock SAA-C03 for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.