SCS-C03 · Question #30
SCS-C03 Question #30: Real Exam Question with Answer & Explanation
Sign in or unlock SCS-C03 to reveal the answer and full explanation for question #30. The question stem and answer options stay visible for context.
Question
A company has a PHP-based web application that uses Amazon S3 as an object store for user files. The S3 bucket is configured for server-side encryption with Amazon S3 managed keys (SSE-S3). New requirements mandate full control of encryption keys. Which combination of steps must a security engineer take to meet these requirements? (Select THREE.)
Options
- ACreate a new customer managed key in AWS Key Management Service (AWS KMS).
- BChange the SSE-S3 configuration on the S3 bucket to server-side encryption with customer-
- CConfigure the PHP SDK to use the SSE-S3 key before upload.
- DCreate an AWS managed key for Amazon S3 in AWS KMS.
- EChange the SSE-S3 configuration on the S3 bucket to server-side encryption with AWS KMS
- FChange all the S3 objects in the bucket to use the new encryption key.
Unlock SCS-C03 to see the answer
You've previewed enough free SCS-C03 questions. Unlock SCS-C03 for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.