Free AWS Certified Solutions Architect Associate SAA-C03 Practice Question

A financial institution requires compliance with a regulation that mandates the use of validated hardware security modules to encrypt data at rest. Which service should be implemented to satisfy this prerequisite, given the need for FIPS 140-2 validation for key storage?

  • Secrets storage and management service

  • Key Management Service (KMS)

  • CloudHSM

  • Object storage service with server-side encryption options

This question's topic:
AWS Certified Solutions Architect Associate SAA-C03 / 
Design Secure Architectures
Your Score:

Check or uncheck an objective to set which questions you will receive.