Aptitude Reasoning English GK Computer Knowledge Programming Skill Banking Software Testing

You are a software developer for a multinational investment bank which has a hybrid cloud architecture with AWS. To improve the security of their applications, they decided to use AWS Key Management Service (KMS) to create and manage their encryption keys across a wide range of AWS services. You were given the responsibility to integrate AWS KMS with the financial applications of the company. Which of the following are the recommended steps to locally encrypt data using AWS KMS that you should follow?

Question

You are a software developer for a multinational investment bank which has a hybrid cloud architecture with AWS. To improve the security of their applications, they decided to use AWS Key Management Service (KMS) to create and manage their encryption keys across a wide range of AWS services. You were given the responsibility to integrate AWS KMS with the financial applications of the company. Which of the following are the recommended steps to locally encrypt data using AWS KMS that you should follow?

Erase the plaintext data key from memory and store the encrypted data key alongside the locally encrypted data. and use GenerateDataKey operation to get a data encryption key then use the plaintext data key in the response to encrypt data locally.
use the GenerateDataKeyWithoutPlaintext operation to get a data encryption key then use the plaintext data key in the response to encrypt data locally.
Encrypt data locally using the Encrypt operation.
Erase the encrypted data key from memory and store the plaintext data key alongside the locally encrypted data.

Solutons With Key Points

Answer- A

Related Questions

More Test for Practice

AWS certification

Developer Associate AWS certification