SAP-C01 Exam QuestionsBrowse all questions from this exam
Go to Exam

SAP-C01 Exam - Question 1

Your company policies require encryption of sensitive data at rest. You are considering the possible options for protecting data while storing it at rest on an EBS data volume, attached to an EC2 instance.

Which of these options would allow you to encrypt your data at rest? (Choose three.)

Show Answer
Correct Answer: ACD

To encrypt data at rest on an EBS data volume, attached to an EC2 instance, you have several options. First, you can implement third-party volume encryption tools to encrypt your data. Second, you can encrypt data inside your applications before storing it on the EBS volume, ensuring that the data is encrypted before it even reaches the storage medium. Lastly, you can use native data encryption drivers at the file system level to encrypt the data as it is written to and read from the EBS volume. Implementing SSL/TLS is not suitable for data at rest as it is meant for encrypting data in transit, and EBS volumes are not encrypted by default.

Discussion

17 comments
Sign in to comment
KiraguJohn
Dec 6, 2021

Which of the following choices enables you to encrypt your data in transit? Why is SSL wrong?

RVivek
Dec 28, 2021

The question mentions "possible options for protecting data while storing it at rest" SSL/TLS is used for encrrypting data in transite

krisvija12
Dec 29, 2021

SSL/TLS encrypts data in transit and not in rest.

futen0326Options: BCD
Feb 13, 2022

You all have completely misread the question .. it is not a trick question. "You're weighing your choices for data protection while it's stored at rest on an EBS data disk" So besides the questions literally asking plainly how you can encrypt data in transit.. The scenario is saying that the data is sitting in the EBS data disk waiting to be moved, and the data will need to be encrypted in transit.

futen0326
Feb 13, 2022

Encrypting the volume DOES NOT provide encryption in transit..

Ni_yot
Jan 19, 2022

A, C and D. Trick question which i fell for. the question is asking about EBS volume encryption not for data in transit.

cannottellname
Jan 25, 2022

I believe, Data in transit means from EC2 level application to EBS volumes which is internal. Hence, SSL/TLS is not the solution. Thus, ACD seems correct options here. 3rd party encryption, File level encryption, and added already encrypted data.

pititcu667Options: ACD
Feb 23, 2022

bcd is incorrect.

exam_aszOptions: ACD
Aug 24, 2022

No need SSL/TLS

epomattiOptions: ACD
Aug 29, 2022

Correct: A, C, D Incorrect: B - TLS is for transit encryption, not encryption at rest E - EBS does not automatically encrypt

nazharOptions: ACD
Aug 29, 2022

BCD is incorrect

Ashok_GonuguntlaOptions: ACD
Sep 21, 2022

ACD is correct answer

TigerInTheCloud
Dec 2, 2022

B and E are wrong

gameofloveOptions: ACD
Mar 10, 2023

SSL is Transport Protocol and the question is Data at rest

Subs2021Options: ACD
Mar 14, 2023

ACD is correct

iamRohanKaushikOptions: ACD
Mar 21, 2023

ACD is correct

hatanaokiOptions: ACD
May 28, 2024

The correct answer to this question is definitely ACD.

kuongnpOptions: ACD
Jul 11, 2024

A, C, D is correct

Narendragpt
Jul 15, 2024

NO Fight . the correct options are A, C, and D.

Amazon_Dumps_comOptions: ACD
Jul 19, 2024

ACD is Valid ( ACD, ACD, ACD )