A SysOps Administrator using AWS KMS needs to rotate all customer master keys (CMKs) every week to meet Information Security guidelines. Which option would meet the requirement?
A) Create a new CMK every 7 days to manually rotate the encryption keys.
B) Enable key rotation on the CMKs and set the rotation period to 7 days.
C) Switch to using AWS CloudHSM as AWS KMS does not support key rotation.
D) Use data keys for each encryption task to avoid the need to rotate keys.
Correct Answer:
Verified
Q877: A Development team recently deployed a new
Q878: A SysOps Administrator receives a connection timeout
Q879: The CFO of a company wants to
Q880: An organization has created one IAM user
Q881: A company requires that all access from
Q883: The Security team at AnyCompany discovers that
Q884: A company has attached the following policy
Q885: A company recently performed a security audit
Q886: An organization is measuring the latency of
Q887: A user is trying to create a
Unlock this Answer For Free Now!
View this answer and more for free by performing one of the following actions
Scan the QR code to install the App and get 2 free unlocks
Unlock quizzes for free by uploading documents