Answer-first summary for fast verification
Answer: Enable encryption at rest and in transit using the Redshift encryption feature and SSL/TLS.
To ensure the confidentiality and integrity of data in transit, both encryption at rest and in transit should be implemented. While encryption at rest (A) protects data when it is stored, it does not protect data during transit. A VPN gateway (C) provides secure connectivity but does not encrypt the data itself. The correct approach (D) is to enable encryption at rest using the Redshift encryption feature and to enable encryption in transit using SSL/TLS for all connections to the Redshift cluster, providing comprehensive protection for data both when it is stored and when it is being transmitted.
Author: LeetQuiz Editorial Team
Ultimate access to all questions.
Your company is using Amazon Redshift as its data warehouse solution. To ensure the confidentiality and integrity of data in transit, which of the following encryption mechanisms should you implement?
A
Enable encryption at rest using the Redshift encryption feature.
B
Enable encryption in transit using SSL/TLS for all connections to the Redshift cluster.
C
Use a VPN gateway to connect to the Redshift cluster.
D
Enable encryption at rest and in transit using the Redshift encryption feature and SSL/TLS.
No comments yet.