Answer-first summary for fast verification
Answer: Encryption of the data encryption key and its storage in an encrypted form with the ciphertext.
The correct answer is B. When using the AWS Encryption SDK, the data encryption key (DEK) is encrypted with a Key Encryption Key (KEK). This encrypted DEK is then stored alongside the encrypted data (ciphertext). This method allows the SDK to manage DEKs seamlessly and ensures the keys are securely stored with the data.
Author: LeetQuiz Editorial Team
Ultimate access to all questions.
In the context of AWS Encryption SDK, what is the method for managing data encryption keys after data encryption?
A
Manual tracking of data encryption keys by the developer for each data object.
B
Encryption of the data encryption key and its storage in an encrypted form with the ciphertext.
C
Automatic storage of data encryption keys in Amazon S3 by the SDK.
D
Storing the data encryption key within the EC2 instance's Userdata.
No comments yet.