Topic 1 Question 544
A company stores customer credit reports in an Amazon S3 bucket. An analytics service uses standard Amazon S3 GET requests to access the reports.
A developer must implement a solution to redact personally identifiable information (PII) from the reports before the reports reach the analytics service.
Which solution will meet this requirement with the MOST operational efficiency?
Load the S3 objects into Amazon Redshift by using a COPY command. Implement dynamic data masking. Refactor the analytics service to read from Amazon Redshift.
Set up an S3 Object Lambda function. Attach the function to an S3 Object Lambda Access Point. Program the function to call a PII redaction API.
Use AWS Key Management Service (AWS KMS) to implement encryption in the S3 bucket. Re-upload all the existing S3 objects. Give the kms:Decrypt permission to the analytics service.
Create an Amazon Simple Notification Service (Amazon SNS) topic. Implement message data protection. Refactor the analytics service to publish data access requests to the SNS topic.
ユーザの投票
コメント(2)
- 正解だと思う選択肢: B
B is the correct answer
👍 2BasselBuzz2025/02/20 - 正解だと思う選択肢: B
Con S3 Object Lambda puedes interceptar las solicitudes GET a objetos en S3 y ejecutar Lambda para cambios antes de que lleguen al consumidor.
👍 1italiancloud20252025/02/17
シャッフルモード