A company’s network security policy requires encryption for all data in transit. The company must encrypt data that is sent between Amazon EC2 instances and Amazon Elastic Block Store (Amazon EBS) volumes.
Which solution will meet this requirement?
A.
Configure Amazon EC2 to enable encryption in the EC2 network interface properties.
B.
Configure Amazon EBS to enable volume encryption with AWS Key Management Service (AWS KMS) for data at rest.
C.
Configure Amazon EBS to enable TLS encryption in the volume configuration properties.
D.
Configure Amazon EC2 to enable TLS encryption with certificates that are stored in AWS Certificate Manager (ACM).
Option C is correct
One needs to enable TLS encryption in the volume to ensure data is encrypted in transit.
Option B (volume encryption) is not sufficient. EBS encryption focuses on data storage security, while TLS focuses on data transmission security.
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
mnsait
2 weeks, 2 days ago