Answer-first summary for fast verification
Answer: Encrypted EBS volumes for EC2 storage.
The correct answer is A. Configuring the fleet of EC2 instances to use encrypted EBS volumes for data storage directly fulfills the encryption requirement while minimizing performance impact. AWS EBS encryption provides encryption at rest and integrates seamlessly with AWS Key Management Service (KMS) for key management. This process is transparent to the applications utilizing the EBS volumes, ensuring minimal performance degradation. Other options, such as writing data to an encrypted Amazon S3 bucket (Option B), custom application encryption (Option C), or using an encrypted root volume and ephemeral disks (Option D), may introduce additional complexities, latencies, or are less optimal for this specific use case.
Author: LeetQuiz Editorial Team
Ultimate access to all questions.
A company is developing a compute-intensive application on Amazon EC2, requiring encrypted storage for sensitive data without performance degradation. Which solution meets these criteria?
A
Encrypted EBS volumes for EC2 storage.
B
Encrypted data storage in Amazon S3 buckets.
C
Custom application encryption for data.
D
Encrypted root volume with data on ephemeral disks.
No comments yet.