Welcome to ExamTopics
ExamTopics Logo
- Expert Verified, Online, Free.
Mail Us[email protected]
Menu
Amazon Discussions
exam questions

Exam AWS Certified Solutions Architect - Associate SAA-C03 All Questions

View all questions & answers for the AWS Certified Solutions Architect - Associate SAA-C03 exam
Go to Exam

Exam AWS Certified Solutions Architect - Associate SAA-C03 topic 1 question 270 discussion

Exam question from Amazon's AWS Certified Solutions Architect - Associate SAA-C03
Question #: 270
Topic #: 1
[All AWS Certified Solutions Architect - Associate SAA-C03 Questions]

A company is using a centralized AWS account to store log data in various Amazon S3 buckets. A solutions architect needs to ensure that the data is encrypted at rest before the data is uploaded to the S3 buckets. The data also must be encrypted in transit.

Which solution meets these requirements?

  • A. Use client-side encryption to encrypt the data that is being uploaded to the S3 buckets.
  • B. Use server-side encryption to encrypt the data that is being uploaded to the S3 buckets.
  • C. Create bucket policies that require the use of server-side encryption with S3 managed encryption keys (SSE-S3) for S3 uploads.
  • D. Enable the security option to encrypt the S3 buckets through the use of a default AWS Key Management Service (AWS KMS) key.
Show Suggested Answer Hide Answer
Suggested Answer: A 🗳️
by bamishr at Jan. 13, 2023, 1:14 p.m.
Disclaimers:
  • - ExamTopics website is not related to, affiliated with, endorsed or authorized by Amazon.
  • - Trademarks, certification & product names are used for reference only and belong to Amazon.

Comments

Chosen Answer:
This is a voting comment (?) , you can switch to a simple comment.
Switch to a voting comment New
Submit Cancel
techhb
Highly Voted 1 year, 9 months ago
Selected Answer: A
here keyword is "before" "the data is encrypted at rest before the data is uploaded to the S3 buckets."
upvoted 28 times
...
reviewmine
Most Recent 7 months, 4 weeks ago
Selected Answer: A
Answer is A. Encrypt it first before uploading to S3.
upvoted 2 times
...
pentium75
9 months, 3 weeks ago
Selected Answer: C
I think the many votes for A are caused by misunderstanding the wording as "Ensure that the data is encrypted at rest before the data is uploaded" But that doesn't make sense, it means "Ensure that the data is encrypted at rest before the data is uploaded" So, before you allow people to upload data, make sure that it gets encrypted.
upvoted 1 times
pentium75
9 months, 3 weeks ago
On second thought, C would not enforce encryption in transit. Thus must be A indeed.
upvoted 2 times
awsgeek75
9 months ago
For a moment I bought into your reasoning for C assuming that maybe the question is missing some grammar construct but realised that C does not really solve the encryption in transit issue like I originally thought. BUT good work!
upvoted 1 times
...
...
...
Cyberkayu
10 months, 1 week ago
BCD, data not yet encrypted before landing on S3 bucket
upvoted 2 times
...
palthainon
11 months, 3 weeks ago
Selected Answer: C
HTTPs would encrypt in transe, SSE3 managed keys fulfills requirement for at rest. This is an aws exam, not a best practices exam.
upvoted 1 times
awsgeek75
9 months ago
No. HTTPS is not enough for encryption in transit when it comes to S3. https://docs.aws.amazon.com/AmazonS3/latest/userguide/UsingClientSideEncryption.html "Client-side encryption is the act of encrypting your data locally to help ensure its security in transit and at rest. "
upvoted 3 times
...
...
petertang224
1 year ago
Its_SaKar
upvoted 1 times
...
prabhjot
1 year ago
Ans is B - Server-Side Encryption (SSE): ensure data is encrypted at rest and also Encryption in Transit: When you upload data to Amazon S3 using standard HTTPS requests.
upvoted 4 times
...
TariqKipkemei
1 year ago
Selected Answer: A
Use client-side encryption to encrypt the data that is being uploaded to the S3 buckets
upvoted 1 times
...
Guru4Cloud
1 year, 1 month ago
Selected Answer: A
A. Use client-side encryption to encrypt the data that is being uploaded to the S3 buckets.
upvoted 1 times
...
Guru4Cloud
1 year, 1 month ago
Selected Answer: A
A. Use client-side encryption to encrypt the data that is being uploaded to the S3 buckets.
upvoted 1 times
...
Abobaloyi
1 year, 3 months ago
Selected Answer: A
data must be encrypted before uploaded , which means the client need to do it before uploading the data to S3
upvoted 3 times
...
datz
1 year, 6 months ago
Selected Answer: A
A, would meet requirements.
upvoted 1 times
...
nder
1 year, 7 months ago
Selected Answer: A
Because the data must be encrypted while in transit
upvoted 2 times
...
LuckyAro
1 year, 8 months ago
Selected Answer: A
A is correct IMO
upvoted 1 times
...
mhmt4438
1 year, 9 months ago
Selected Answer: A
https://www.examtopics.com/discussions/amazon/view/53840-exam-aws-certified-solutions-architect-associate-saa-c02/
upvoted 4 times
...
Aninina
1 year, 9 months ago
Selected Answer: A
A. Use client-side encryption to encrypt the data that is being uploaded to the S3 buckets.
upvoted 2 times
...
bamishr
1 year, 9 months ago
Selected Answer: A
Use client-side encryption to encrypt the data that is being uploaded to the S3 buckets
upvoted 2 times
Kesha
1 year, 2 months ago
B. With server-side encryption, it automatically encrypts the data at rest using encryption keys managed by AWS.
upvoted 1 times
...
...

Get IT Certification

Unlock free, top-quality video courses on ExamTopics with a simple registration. Elevate your learning journey with our expertly curated content. Register now to access a diverse range of educational resources designed for your success. Start learning today with ExamTopics!

Start Learning for free
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel