AmazonAmazon
SAA-C03 · Question #643
SAA-C03 Question #643: Real Exam Question with Answer & Explanation
Sign in or unlock SAA-C03 to reveal the answer and full explanation for question #643. The question stem and answer options stay visible for context.
Submitted by jian89· Mar 4, 2026Design Secure Architectures
Question
A company is migrating a sensitive dataset to Amazon S3. A solutions architect must ensure that the data is encrypted at rest. The encryption solution needs to give the company the ability to generate its own keys without obligating the company to manage key storage or the encryption process. Which solution will meet these requirements?
Options
- AServer-side encryption with Amazon S3 managed encryption keys (SSE-S3).
- BServer-side encryption with AWS KMS keys (SSE-KMS).
- CServer-side encryption with customer-provided encryption keys (SSE-C).
- DClient-side encryption with an AWS Key Management Service (AWS KMS) customer managed
Unlock SAA-C03 to see the answer
You've previewed enough free SAA-C03 questions. Unlock SAA-C03 for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.