Knowee
Questions
Features
Study Tools

Due to regulatory guidelines, a company needs to encrypt data as it passes through the different layers of its AWS architecture. The company is reviewing the capabilities of the various AWS services and their encryption options. Which of the below services are encrypted by default and need no user intervention to enable encryption?Question 52Answera.AWS Organizations, Amazon EC2, AWS CloudTrail Logsb.AWS CloudTrail Logs, Amazon S3 Glacier, AWS Storage Gatewayc.AWS Storage Gateway, Application Load Balancer (ALB), Amazon CloudFrontd.Amazon CloudWatch logs, Application Load Balancer (ALB), Amazon S3 Glacier

Question

Due to regulatory guidelines, a company needs to encrypt data as it passes through the different layers of its AWS architecture. The company is reviewing the capabilities of the various AWS services and their encryption options. Which of the below services are encrypted by default and need no user intervention to enable encryption?Question 52Answera.AWS Organizations, Amazon EC2, AWS CloudTrail Logsb.AWS CloudTrail Logs, Amazon S3 Glacier, AWS Storage Gatewayc.AWS Storage Gateway, Application Load Balancer (ALB), Amazon CloudFrontd.Amazon CloudWatch logs, Application Load Balancer (ALB), Amazon S3 Glacier

...expand
🧐 Not the exact question you are looking for?Go ask a question

Solution

The correct answer is b. AWS CloudTrail Logs, Amazon S3 Glacier, AWS Storage Gateway. These services are encrypted by default and do not require user intervention to enable encryption.

Here's why:

  1. AWS CloudTrail Logs: AWS CloudTrail logs are encrypted using Amazon S3 server-side encryption (SSE). You do not need to perform any action to encrypt your CloudTrail logs.

  2. Amazon S3 Glacier: Amazon S3 Glacier (S3 Glacier) automatically encrypts data at rest using Advanced Encryption Standard (AES) 256-bit symmetric keys, a secure symmetric key encryption standard.

  3. AWS Storage Gateway: All data transferred between any type of gateway appliance and AWS storage is encrypted using SSL. All data stored by AWS Storage Gateway in S3 is encrypted using S3 server-side encryption.

The other services mentioned in the options either do not encrypt by default or require user intervention for encryption.

This problem has been solved

Similar Questions

Which AWS service has encryption enabled by default?

Which of the following AWS services have data encryption automatically enabled? (Select two)Question 40AnswerA.Amazon RedshiftB.Amazon Elastic Block Store (Amazon EBS)C.Amazon Simple Storage Service (Amazon S3)D.AWS Storage GatewayE.Amazon Elastic File System (Amazon EFS)

Which AWS service has encryption enabled by default?Question 23Answera.Amazon EFSb.Amazon EBSc.AWS CloudTrail Logsd.Amazon RDS

What type of encryption is used to protect data at rest in an S3 bucket?a)SHA-256 encryptionb)RSA encryptionc)SSL/TLS encryptiond)AES-256 server-side encryption

Which of the following is the least effort way to encrypt data for AWS services only in your AWS account using AWS Key Management Service (KMS)?Question 28Answera.Use AWS managed master keys that are automatically created in your account for each serviceb.Use AWS owned CMK in the service you wish to use encryptionc.Create your own customer managed keys (CMKs) in AWS KMSd.Use AWS KMS APIs to encrypt data within your own application by using the AWS Encryption SDK

1/3

Upgrade your grade with Knowee

Get personalized homework help. Review tough concepts in more detail, or go deeper into your topic by exploring other relevant questions.