An organization processes consumer information submitted through its website. The organization's security policy requires that personally identifiable information (PII) elements are specifically encrypted at all times and as soon as feasible when received. The front-end Amazon EC2 instances should not have access to decrypted PII. A single service within the production VPC must decrypt the PII by leveraging an IAM role. Which combination of services will support these requirements? (Choose two.) A. Amazon Aurora in a private subnet B. Amazon CloudFront using AWS Lambda@Edge C. Customer-managed MySQL with Transparent Data Encryption D. Application Load Balancer using HTTPS listeners and targets E. AWS Key Management Services  Suggested Answer: CE Community Answer: BE References: https://noise.getoto.net/tag/aws-kms/ This question is in ANS-C00 AWS Certified Advanced Networking – Specialty Exam For getting AWS Certified Advanced Networking – Specialty Certificate Disclaimers: The website is not related to, affiliated with, endorsed or authorized by Amazon. Trademarks, certification & product names are used for reference only and belong to Amazon. The website does not contain actual questions and answers from Amazon's Certification Exam.
Please login or Register to submit your answer