CompTIA Study Materials
AWS Study Materials
AWS Certified Developer Associate AWS Certified Developer Associate
AWS Certified Developer Associate DVA-C02
AWS Certified Solutions Architect Associate AWS Certified Solutions Architect Associate
AWS Certified Solutions Architect Associate SAA-C03
AWS Cloud Practitioner AWS Cloud Practitioner
AWS Cloud Practitioner CLF-C02
Microsoft Study Materials
Microsoft Azure Fundamentals Microsoft Azure Fundamentals
Microsoft Azure Fundamentals AZ-900

Free AWS Certified Solutions Architect Associate SAA-C03 Practice Question

An organization utilizes AWS to encrypt its sensitive data. The security policies state that the encryption keys must be rotated on a regular basis to mitigate the risk of key compromise. Which approach should be implemented to fulfill this requirement while ensuring seamless decryption of both new and existing datasets?

  • Manually create a new key and re-encrypt all data periodically.

  • Generate and import key material from an external source into the existing key setup on a set schedule.

  • Enable automatic key rotation for the encryption service.

  • Remove existing keys at each cycle and establish fresh keys for new encryption operations.

This question's topic:
AWS Certified Solutions Architect Associate SAA-C03 / 
Design Secure Architectures
Your Score:
Design Secure Architectures
Design Resilient Architectures
Design High-Performing Architectures
Design Cost-Optimized Architectures