Answer-first summary for fast verification
Answer: Amazon S3 for data storage, AWS Key Management Service (KMS) for encryption key management, AWS Certificate Manager (ACM) for SSL/TLS certificates, and AWS CloudTrail for auditing
To meet the data security, encryption, key management, and compliance requirements, the software development company should use Amazon S3 for secure and durable data storage, AWS Key Management Service (KMS) for managing and rotating encryption keys for data at rest, AWS Certificate Manager (ACM) for managing SSL/TLS certificates to encrypt data in transit, and AWS CloudTrail for auditing and logging all API activity to meet compliance requirements.
Author: LeetQuiz Editorial Team
Ultimate access to all questions.
No comments yet.
A software development company is building a cloud-based application that processes and stores sensitive customer data. They need to ensure that the data is encrypted at rest and in transit, and that the encryption keys are securely managed and rotated regularly. Additionally, they need to maintain compliance with industry regulations for data protection and auditing. Which combination of AWS services should they use?
A
Amazon EBS for data storage, AWS Key Management Service (KMS) for encryption key management, AWS Certificate Manager (ACM) for SSL/TLS certificates, and AWS Config for compliance monitoring
B
Amazon S3 for data storage, AWS CloudHSM for hardware-based key management, AWS Certificate Manager (ACM) for SSL/TLS certificates, and AWS CloudTrail for auditing
C
Amazon EFS for data storage, AWS Key Management Service (KMS) for encryption key management, AWS Certificate Manager (ACM) for SSL/TLS certificates, and AWS Config for compliance monitoring
D
Amazon S3 for data storage, AWS Key Management Service (KMS) for encryption key management, AWS Certificate Manager (ACM) for SSL/TLS certificates, and AWS CloudTrail for auditing