ExamTopics Logo
Mail Us[email protected]
Menu
Google Discussions
exam questions

Exam Professional Cloud Database Engineer All Questions

View all questions & answers for the Professional Cloud Database Engineer exam
Go to Exam

Exam Professional Cloud Database Engineer topic 1 question 47 discussion

Actual exam question from Google's Professional Cloud Database Engineer
Question #: 47
Topic #: 1
[All Professional Cloud Database Engineer Questions]

You are designing a payments processing application on Google Cloud. The application must continue to serve requests and avoid any user disruption if a regional failure occurs. You need to use AES-256 to encrypt data in the database, and you want to control where you store the encryption key. What should you do?

  • A. Use Cloud Spanner with a customer-managed encryption key (CMEK).
  • B. Use Cloud Spanner with default encryption.
  • C. Use Cloud SQL with a customer-managed encryption key (CMEK).
  • D. Use Bigtable with default encryption.
Show Suggested Answer Hide Answer
Suggested Answer: A 🗳️
by fredcaram at Dec. 20, 2022, 11:58 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
zeta_xs
10 months, 3 weeks ago
Selected Answer: A
A, failt region
upvoted 1 times
...
dynamic_dba
2 years, 3 months ago
A. Avoiding user disruption if a regional failure occurs means you need to pick a multi-region service. That rules out C and D. Having more control over the EKs means CMEK. That eliminates B.
upvoted 4 times
...
GCP72
2 years, 5 months ago
Selected Answer: A
A is the correct answer because " you want to control where you store the encryption key"
upvoted 4 times
...
pk349
2 years, 5 months ago
C: Use Cloud SQL with a customer-managed encryption key (CMEK).
upvoted 1 times
...
chelbsik
2 years, 5 months ago
Selected Answer: A
A for me: it's A or C because we want to control keys, but C would cause downtime, since we would need to manually failover to another region if a regional failure occurs, and we don't want that.
upvoted 2 times
...
jitu028
2 years, 5 months ago
Selected Answer: A
Correct Answer - A
upvoted 1 times
...
range9005
2 years, 5 months ago
Selected Answer: B
I guess B Since Google cloud default encryption comes with AES-256 encryption
upvoted 1 times
Tharun1125438
2 years, 4 months ago
Yes default encryption comes with AES-256 but the question states that you need to control where you store the encryption keys. that can be achieved by CMEK.
upvoted 1 times
...
...
fredcaram
2 years, 5 months ago
A and C would work for this scenario
upvoted 2 times
chelbsik
2 years, 5 months ago
Right, but C would cause downtime, since you would need to manually failover to another region
upvoted 2 times
...
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel