Which encryption method will meet these requirements?

A company uses a third-party application to store encrypted data in Amazon S3. The company uses another third-party application trial decrypts the data from Amazon S3 to ensure separation of duties Between the applications A Security Engineer warns to separate the permissions using IAM roles attached to Amazon EC2 instances. The company prefers to use native AWS services.

Which encryption method will meet these requirements?
A . Use encrypted Amazon EBS volumes with Amazon default keys (AWS EBS)
B . Use server-side encryption with customer-provided keys (SSE-C)
C . Use server-side encryption with AWS KMS managed keys (SSE-KMS)
D . Use server-side encryption with Amazon S3 managed keys (SSE-S3)

View Answer

Answer: C