Coursera Answers

AWS Fundamentals: Addressing Security Risk Week 3 Quiz Answer

AWS Fundamentals Addressing Security Risk Week 3 Quiz Answer

AWS Fundamentals: Addressing Security Risk Week 3 Quiz Answer



Week 3 —- Quiz 1 Answer


Question 1)

What requirement must you adhere to in order to deploy an AWS CloudHSM?


  • Deploy an EBS volume for the HSM
  • Run the HSM in two regions
  • Provision the HSM in a VPC
  • Call AWS Support first to enable it



Question 2)

What AWS KMS keys are used to encrypt and decrypt data in AWS?


  • AWS master keys
  • Seller recrypt keys
  • User recrypt keys
  • Customer master keys



Question 3)

How much data can you encrypt/decrypt using a Customer Master Key?


  • Up to 1MB
  • Up to 4MB
  • Up to 4KB
  • Up to 4TB




Week 3 —- Quiz 2 Answer


Question 1)

The purpose of encrypting data when it is in transit between systems and services is to prevent (choose 3 correct answers):


  • eavesdropping
  • unauthorized copying
  • unauthorized alterations
  • unauthenticated server and client communication




Question 2)

Which protocol below is an industry-standard cryptographic protocol used for encrypting data at the transport layer?


  • X.509
  • HTTPS
  • T​LS
  • IPSec



Question 3)

How do you encrypt an existing unencrypted EBS volume?


  • Take a snapshot for EBS volume, and create new encrypted volume for this snapshot
  • Enable encryption for EC2 instance, which will encrypt the attached EBS volumes
  • EBS volumes are encrypted at rest by default
  • Enable Encryption by Default feature



Question 4)

Can you encrypt just a subset of items in a DynamoDB table?


  • ​Yes
  • N​o



Question 5)

When you enable encryption for the RDS DB instance, what would not be encrypted?


  • Automated backups
  • Snapshots
  • JBDC connection
  • Read Replicas
  • Transaction logs