Topic 1 Question 100
You need to implement an encryption at-rest strategy that reduces key management complexity for non-sensitive data and protects sensitive data while providing the flexibility of controlling the key residency and rotation schedule. FIPS 140-2 L1 compliance is required for all data types. What should you do?
Encrypt non-sensitive data and sensitive data with Cloud External Key Manager.
Encrypt non-sensitive data and sensitive data with Cloud Key Management Service
Encrypt non-sensitive data with Google default encryption, and encrypt sensitive data with Cloud External Key Manager.
Encrypt non-sensitive data with Google default encryption, and encrypt sensitive data with Cloud Key Management Service.
ユーザの投票
コメント(10)
- 正解だと思う選択肢: D
Both B and D seem correct tbh. D might be "more correct" depending on the interpretation.
"reduces key management complexity for non-sensitive data" - Google default encryption "protects sensitive data while providing the flexibility of controlling the key residency and rotation schedule" - Customer Managed Key
👍 5Chute51182022/07/23 - 正解だと思う選択肢: D
D is the answer.
👍 4zellck2022/09/27 Answer = D
👍 3mouchu2022/05/17
シャッフルモード