ExamTopics Logo
Mail Us[email protected]
Menu
Amazon Discussions
exam questions

Exam AWS Certified Cloud Practitioner CLF-C02 All Questions

View all questions & answers for the AWS Certified Cloud Practitioner CLF-C02 exam
Go to Exam

Exam AWS Certified Cloud Practitioner CLF-C02 topic 1 question 219 discussion

Exam question from Amazon's AWS Certified Cloud Practitioner CLF-C02
Question #: 219
Topic #: 1
[All AWS Certified Cloud Practitioner CLF-C02 Questions]

Which encryption types can be used to protect objects at rest in Amazon S3? (Choose two.)

  • A. Server-side encryption with Amazon S3 managed encryption keys (SSE-S3)
  • B. Server-side encryption with AWS KMS managed keys (SSE-KMS)
  • C. TLS
  • D. SSL
  • E. Transparent Data Encryption (TDE)
Show Suggested Answer Hide Answer
Suggested Answer: AB 🗳️
by asdfcdsxdfc at Nov. 15, 2023, 11:35 p.m.
Disclaimers:
  • - ExamTopics website is not related to, affiliated with, endorsed or authorized by Amazon.
  • - Trademarks, certification & product names are used for reference only and belong to Amazon.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
1507a4f
1 week, 2 days ago
Selected Answer: AB
The correct answers are: A. Server-side encryption with Amazon S3 managed encryption keys (SSE-S3) ✅ B. Server-side encryption with AWS KMS managed keys (SSE-KMS) ✅ Reasoning: SSE-S3 uses keys managed by Amazon S3 to encrypt your data at rest. SSE-KMS integrates with AWS Key Management Service (KMS) for more control over encryption keys, including key rotation and access policies. TLS and SSL are used for data in transit, not at rest. Transparent Data Encryption (TDE) is used with databases like Amazon RDS for Oracle or SQL Server, not for S3 objects. Confidence level: High Reference: AWS S3 Encryption Documentation
upvoted 1 times
...
Gustavo_Arg
1 month, 3 weeks ago
Selected Answer: AE
A. Server-side encryption with Amazon S3 managed encryption keys (SSE-S3) All Amazon S3 buckets have encryption configured by default, and all new objects that are uploaded to an S3 bucket are automatically encrypted at rest. Server-side encryption with Amazon S3 managed keys (SSE-S3) is the default encryption configuration for every bucket in Amazon S3. E. Transparent Data Encryption (TDE) is a technology used to encrypt entire databases at rest, including data and log files, to protect against unauthorized access to sensitive data.
upvoted 1 times
...
chalaka
10 months ago
Selected Answer: AB
The encryption types that can be used to protect objects at rest in Amazon S3 are: A. Server-side encryption with Amazon S3 managed encryption keys (SSE-S3) B. Server-side encryption with AWS KMS managed keys (SSE-KMS) These options provide encryption for data stored in Amazon S3. SSE-S3 and SSE-KMS encrypt data at the object level using encryption keys managed by Amazon S3 and AWS Key Management Service (KMS), respectively.
upvoted 2 times
...
Ionesia
1 year, 2 months ago
Selected Answer: AB
SSE S3/KMS correct answer
upvoted 1 times
...
Syedharoonhussain
1 year, 3 months ago
Amazon S3 now applies server-side encryption with Amazon S3 managed keys (SSE-S3) as the base level of encryption for every bucket in Amazon S3. Starting January 5, 2023, all new object uploads to Amazon S3 are automatically encrypted at no additional cost and with no impact on performance. T Unless you specify otherwise, buckets use SSE-S3 by default to encrypt objects. However, you can choose to configure buckets to use server-side encryption with AWS Key Management Service (AWS KMS) keys (SSE-KMS) instead. https://docs.aws.amazon.com/AmazonS3/latest/userguide/UsingKMSEncryption.html
upvoted 2 times
...
asdfcdsxdfc
1 year, 3 months ago
Are the given answers correct? can anyone confirm
upvoted 1 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel