ExamGecko
Question list
Search
Search

List of questions

Search

Related questions











Question 119 - SCS-C01 discussion

Report
Export

A company's application runs on Amazon EC2 and stores data in an Amazon S3 bucket The company wants additional security controls in place to limit the likelihood of accidental exposure of data to external parties Which combination of actions will meet this requirement? (Select THREE.)

A.
Encrypt the data in Amazon S3 using server-side encryption with Amazon S3 managed encryption keys (SSE-S3)
Answers
A.
Encrypt the data in Amazon S3 using server-side encryption with Amazon S3 managed encryption keys (SSE-S3)
B.
Encrypt the data in Amazon S3 using server-side encryption with AWS KMS managed encryption keys (SSE-KMS)
Answers
B.
Encrypt the data in Amazon S3 using server-side encryption with AWS KMS managed encryption keys (SSE-KMS)
C.
Create a new Amazon S3 VPC endpoint and modify the VPC's routing tables to use the new endpoint
Answers
C.
Create a new Amazon S3 VPC endpoint and modify the VPC's routing tables to use the new endpoint
D.
Use the Amazon S3 Block Public Access feature.
Answers
D.
Use the Amazon S3 Block Public Access feature.
E.
Configure the bucket policy to allow access from the application instances only
Answers
E.
Configure the bucket policy to allow access from the application instances only
F.
Use a NACL to filter traffic to Amazon S3
Answers
F.
Use a NACL to filter traffic to Amazon S3
Suggested answer: B, C, E

Explanation:

Topic 2, Exam Pool B

asked 16/09/2024
Demilson Mantegazine
37 questions
User
Your answer:
0 comments
Sorted by

Leave a comment first