🔥 3-day streak
AWS Certified Security - Specialty93 / 184
Question 93 of 184
A media company must encrypt very large video files (several GB each) on-premises before uploading them to Amazon S3. Compliance requires that the plaintext data key never leave the application and that encryption happen entirely client-side using a customer managed KMS key. The team wants to avoid sending the multi-GB payloads to KMS. Which approach correctly meets these requirements?
Reviewed for accuracy · Report an issueNext question