Topic 1 Question 164
When using the AWS Encryption SDK, how does the developer keep track of the data encryption keys used to encrypt data?
The developer must manually keep track of the data encryption keys used for each data object.
The SDK encrypts the data encryption key and stores it (encrypted) as part of the returned ciphertext.
The SDK stores the data encryption keys automatically in Amazon S3.
The data encryption key is stored in the Userdata for the EC2 instance.
ユーザの投票
コメント(3)
- 正解だと思う選択肢: B👍 2Digo30sp2023/10/06
- 正解だと思う選択肢: B
B is correct
👍 2dilleman2023/10/11 - 正解だと思う選択肢: B
When using the AWS Encryption SDK, it is a common practice to encrypt the data encryption key (DEK) along with the data. The DEK is used to encrypt the actual data, and it is itself encrypted using a key management system, often called a key encryption key (KEK). This encrypted DEK is then stored alongside the encrypted data.
👍 1TanTran042023/12/12
シャッフルモード