DEA-C01
Data Security and Governance
hard
Question 1 of 38

Which statement about AWS KMS keys is accurate?

AThey are exported in plaintext to client applications for safekeeping
BThey are protected by FIPS 140-3 Security Level 3 validated HSMs and never leave AWS KMS unencrypted
CThey can only be used with Amazon S3
DThey require Amazon Redshift Spectrum to function

More Data Security and Governance Questions

38 questions

Full AWS Certified Data Engineer - Associate Practice Test

All topics covered

All AWS Certified Data Engineer - Associate Questions

Browse by topic

Related Questions

An application currently stores database credentials in source code. The team wants runtime retrieva...

easy

A company needs a managed service to create and control the keys used to encrypt and sign data. Whic...

easy

A security team needs a service that discovers sensitive data in Amazon S3 by using machine learning...

easy

A data lake administrator needs to grant analysts access to only specific columns and rows in catalo...

medium

A company wants to adopt Lake Formation gradually so some cataloged data can use both Lake Formation...

medium
View all Data Security and Governance questions

Educational Content — CertQnA practice questions are written against official exam objectives, covering the same domains tested on the real exam. All content is original and independent — not actual exam questions, not affiliated with any certification vendor. Learn more about our content policy

Discussion

Be the first to share your understanding of this concept

⚠️ Discussion is for concept clarification only. Do not share or request actual exam questions or answers.

Sign in to join the discussion

Sign InCreate free account