Pre-Summer Special Limited Time 70% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: validbest

Discussions
  1. Home
  2. Discussions
  3. Amazon Web Services
  4. AWS Solutions Architect Associate
  5. SAA-C03 Discussions
  6. SAA-C03 Exam Topic 9 Question 62 Discussion
 Amazon Web Services Discussions
Exam SAA-C03 All Questions
Exam SAA-C03 All Questions

View all questions & answers for the SAA-C03 exam

Go to Exam

Amazon Web Services AWS Solutions Architect Associate SAA-C03 Question # 62 Topic 9 Discussion

SAA-C03 Exam Topic 9 Question 62 Discussion:
Question #: 62
Topic #: 9

A company stores sensitive data in Amazon S3 A solutions architect needs to create an encryption solution The company needs to fully control the ability of users to create, rotate, and disable encryption keys with minimal effort for any data that must be encrypted.

Which solution will meet these requirements?
A.

Use default server-side encryption with Amazon S3 managed encryption keys (SSE-S3) to store the sensitive data

B.

Create a customer managed key by using AWS Key Management Service (AWS KMS). Use the new key to encrypt the S3 objects by using server-side encryption with AWS KMS keys (SSE-KMS).

C.

Create an AWS managed key by using AWS Key Management Service {AWS KMS) Use the new key to encrypt the S3 objects by using server-side encryption with AWS KMS keys (SSE-KMS).

D.

Download S3 objects to an Amazon EC2 instance. Encrypt the objects by using customer managed keys. Upload the encrypted objects back into Amazon S3.

Get Premium SAA-C03 Questions
Actual exam question for Amazon Web Services SAA-C03 exam by Kai3060 at May 1, 2026, 5:08:44 PM

Contribute your Thoughts:


Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.

Submit