Explanation:
Both server-side encryption with AWS KMS keys and client-side encryption with your own keys can be used to protect sensitive data stored in Amazon S3 buckets from unauthorized access. AWS KMS keys offer more control and auditing capabilities, while client-side encryption provides an additional layer of security.
Ultimate access to all questions.
No comments yet.
You need to protect sensitive data stored in Amazon S3 buckets from unauthorized access. Which encryption option should you choose?
A
Server-side encryption with AWS Key Management Service (KMS) keys
B
Client-side encryption with your own keys
C
Server-side encryption with Amazon S3 managed keys
D
Both A and B