AWS Certified Solutions Architect - Associate
Get started today
Ultimate access to all questions.
Comments
Loading comments...
Ultimate access to all questions.
An e-commerce company is experiencing a significant increase in customer orders and needs to scale their application infrastructure to handle the load. They are using Amazon EC2 instances to run their application and storing customer data in Amazon RDS. To ensure data security and compliance, they need to implement encryption for data at rest and rotate encryption keys regularly. Which combination of AWS services should they use?
A
Use AWS Key Management Service (AWS KMS) to encrypt Amazon EBS volumes and RDS instances, and configure automatic key rotation in AWS KMS
B
Enable Amazon EBS encryption for EC2 instances and RDS encryption for the database, and rotate encryption keys manually using AWS Secrets Manager
C
Use AWS CloudHSM to manage encryption keys for Amazon EBS and RDS encryption, and rotate keys manually through the AWS CloudHSM client
D
Enable Amazon S3 server-side encryption for storing application logs and customer data, and rotate encryption keys using AWS Lambda functions