🔥 3-day streak
CompTIA SecurityX (CAS-005)4 / 120
Question 4 of 120
A financial services company must migrate encryption for a regulated SaaS workload to a public cloud provider. Compliance requires that the organization retain sole control over the origin of the key material and be able to demonstrate to auditors that the cloud provider never generated the master key. The team wants to use the provider's managed KMS for performance but must satisfy this key-provenance requirement. Which approach best meets the requirement?
Reviewed for accuracy · Report an issueNext question