Answer-first summary for fast verification
Answer: Encrypt data using Azure Key Vault-backed keys at each stage of the pipeline
The most suitable approach for implementing end-to-end encryption with customer-managed keys involves encrypting data at each pipeline stage using Azure Key Vault-backed keys. This method ensures secure management and control over encryption keys, allowing for comprehensive data protection from Azure Event Hubs to Azure Synapse Analytics. Azure Key Vault supports bringing your own keys (BYOK), offering full control over encryption keys for enhanced security. This strategy guarantees data encryption both at rest and in transit, meeting compliance requirements and safeguarding sensitive information against unauthorized access.
Author: LeetQuiz Editorial Team
Ultimate access to all questions.
How can you implement end-to-end encryption using customer-managed keys for an Azure Databricks data pipeline that ingests data from Azure Event Hubs, transforms it, and stores the results in Azure Synapse Analytics?
A
Utilize Azure Transparent Data Encryption (TDE) with customer-managed keys for Event Hubs, Databricks, and Synapse
B
Encrypt data using Azure Key Vault-backed keys at each stage of the pipeline
C
Implement client-side encryption in the Databricks notebooks for data at rest and in motion
D
Use Azure Dedicated HSM to manage keys and enforce encryption across all services in the pipeline
No comments yet.