Client-managed encryption allows clients to have full control over the encryption keys used to protect their block storage volumes, file shares, and custom images on IBM Cloud. This option ensures that only the client has access to the keys and, therefore, to the data.
Benefits of Client-Managed Encryption:Clients retain control over key management, including generation, rotation, and deletion, ensuring compliance with security policies and regulatory requirements.
Comparison with Other Options:
A (Provider-managed encryption):Managed by IBM, not by the client.
C (IBM-managed encryption):Similar to provider-managed, where IBM controls the keys.
D (Custom encryption):Not a specific term used in IBM Cloud documentation for this feature.
References:
IBM Cloud Data Encryption Documentation
IBM Cloud Architect Exam Study Guide
=================
Contribute your Thoughts:
Chosen Answer:
This is a voting comment (?). You can switch to a simple comment. It is better to Upvote an existing comment if you don't have anything to add.
Submit