Bird
0
0

Why might an organization choose SSE-C over SSE-KMS or SSE-S3 for S3 encryption?

hard📝 Conceptual Q10 of 15
AWS - S3 Fundamentals
Why might an organization choose SSE-C over SSE-KMS or SSE-S3 for S3 encryption?
ABecause SSE-C automatically audits key usage
BBecause SSE-C is cheaper than SSE-S3
CBecause SSE-C requires no key management
DTo have full control over encryption keys without AWS storing them
Step-by-Step Solution
Solution:

  1. Step 1: Understand SSE-C key management

    SSE-C requires customers to provide and manage their own encryption keys; AWS does not store these keys.

  2. Step 2: Compare with SSE-KMS and SSE-S3

    SSE-KMS and SSE-S3 store and manage keys within AWS; SSE-C gives full key control to the customer.

  3. Final Answer:

    SSE-C allows full customer control over keys without AWS storing them -> Option D

  4. Quick Check:

    SSE-C = customer manages keys fully [OK]
Quick Trick: SSE-C means you manage keys; AWS does not store them [OK]
Common Mistakes:
MISTAKES
  • Thinking SSE-C is cheaper than SSE-S3
  • Assuming SSE-C audits keys automatically
  • Believing SSE-C requires no key management

Want More Practice?

15+ quiz questions · All difficulty levels · Free

Free Signup - Practice All Questions
More AWS Quizzes
Cloud Computing Fundamentals - AWS Management Console walkthrough - Quiz 1easy Cloud Computing Fundamentals - What is cloud computing - Quiz 6medium EC2 Fundamentals - Key pairs for SSH access - Quiz 11easy Identity and Access Management - Why IAM is foundational - Quiz 5medium Security Groups and Network ACLs - Inbound and outbound rules - Quiz 4medium Security Groups and Network ACLs - Default security group behavior - Quiz 4medium VPC Fundamentals - VPC peering concept - Quiz 3easy VPC Fundamentals - Route tables configuration - Quiz 4medium VPC Fundamentals - Why VPC provides network isolation - Quiz 12easy VPC Fundamentals - VPC peering concept - Quiz 5medium