ExamTopics Logo
Mail Us[email protected]
Menu
Microsoft Discussions
exam questions

Exam SC-100 All Questions

View all questions & answers for the SC-100 exam
Go to Exam

Exam SC-100 topic 3 question 9 discussion

Actual exam question from Microsoft's SC-100
Question #: 9
Topic #: 3
[All SC-100 Questions]

Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution.
After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen.
You are designing the encryption standards for data at rest for an Azure resource.
You need to provide recommendations to ensure that the data at rest is encrypted by using AES-256 keys. The solution must support rotating the encryption keys monthly.
Solution: For blob containers in Azure Storage, you recommend encryption that uses Microsoft-managed keys within an encryption scope.
Does this meet the goal?

  • A. Yes
  • B. No
Show Suggested Answer Hide Answer
Suggested Answer: B 🗳️
by prabhjot at Sept. 2, 2022, 9:48 a.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
zts
Highly Voted 2 years, 3 months ago
Selected Answer: B
This is the link on how-to. https://docs.microsoft.com/en-us/azure/key-vault/keys/how-to-configure-key-rotation
upvoted 8 times
...
prabhjot
Highly Voted 2 years, 3 months ago
Ans is correct ( it is No)
upvoted 5 times
...
SFAY
Most Recent 10 months ago
Selected Answer: B
The answer is B MMK rotation frequency is not disclosed by Microsoft and is not mentioned in any MS documentation. For custom requirements, Microsoft suggests to use CMK. https://learn.microsoft.com/en-us/answers/questions/1286740/what-is-the-frequency-of-key-rotation-in-platform
upvoted 3 times
...
Murtuza
11 months, 3 weeks ago
The frequency of key rotation for Platform Managed Keys (PMKs) in Azure depends on the specific service or feature you are using. Azure manages the key rotation process for you, but the actual rotation interval may vary.
upvoted 2 times
...
Glorpy
1 year ago
Selected Answer: B
Answer is B...while the solution of using Microsoft-managed keys within an encryption scope for blob containers in Azure Storage supports AES-256 encryption for data at rest, for monthly rotation of the encryption keys, the solution would need to be slightly adjusted to use customer-managed keys to meet the specific rotation requirement.
upvoted 4 times
...
JG56
1 year ago
Answer : No , in exam Nov 23
upvoted 4 times
...
shanti0091
1 year, 2 months ago
Selected Answer: A
A is the answer.
upvoted 1 times
shanti0091
1 year, 2 months ago
To backup my point, here is a link - https://learn.microsoft.com/en-us/azure/storage/common/storage-service-encryption#about-encryption-key-management
upvoted 1 times
...
...
Ario
1 year, 5 months ago
Selected Answer: A
Yes, the solution of using Microsoft-managed keys within an encryption scope for blob containers in Azure Storage meets the goal of encrypting the data at rest with AES-256 keys and supporting monthly key rotation
upvoted 2 times
...
zellck
1 year, 7 months ago
Selected Answer: B
B is the answer. https://learn.microsoft.com/en-us/azure/storage/common/customer-managed-keys-overview#update-the-key-version Following cryptographic best practices means rotating the key that is protecting your storage account on a regular schedule, typically at least every two years. Azure Storage never modifies the key in the key vault, but you can configure a key rotation policy to rotate the key according to your compliance requirements.
upvoted 4 times
...
Ajdlfasudfo0
1 year, 10 months ago
The thing is, keys are rotated with microsoft managed keys, but I think you don't know exactly when
upvoted 2 times
Fal991l
1 year, 9 months ago
Azure Storage encryption with Microsoft-managed keys allows for automatic and seamless key rotation every 30 days by default, which meets the requirement of rotating encryption keys monthly.
upvoted 2 times
...
...
JakeCallham
2 years, 2 months ago
Selected Answer: B
Nope, answer is B
upvoted 4 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel