AWS Certified Solutions Architect Associate SAA-C03 Practice Question
A financial institution requires compliance with a regulation that mandates the use of validated hardware security modules to encrypt data at rest. Which service should be implemented to satisfy this prerequisite, given the need for FIPS 140-2 validation for key storage?
CloudHSM
Object storage service with server-side encryption options
Secrets storage and management service
Key Management Service (KMS)