SAA-C03 · Question #593
SAA-C03 Question #593: Real Exam Question with Answer & Explanation
Sign in or unlock SAA-C03 to reveal the answer and full explanation for question #593. The question stem and answer options stay visible for context.
Question
A company regularly uploads confidential data to Amazon S3 buckets for analysis. The company's security policies mandate that the objects must be encrypted at rest. The company must automatically rotate the encryption key every year. The company must be able to track key rotation by using AWS CloudTrail. The company also must minimize costs for the encryption key. Which solution will meet these requirements?
Options
- AUse server-side encryption with customer-provided keys (SSE-C)
- BUse server-side encryption with Amazon S3 managed keys (SSE-S3)
- CUse server-side encryption with AWS KMS keys (SSE-KMS)
- DUse server-side encryption with customer managed AWS KMS keys
Unlock SAA-C03 to see the answer
You've previewed enough free SAA-C03 questions. Unlock SAA-C03 for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.