Coursera Answers

AWS Fundamentals: Addressing Security Risk Week 3 Quiz Answer

AWS Fundamentals Addressing Security Risk Week 3 Quiz Answer

AWS Fundamentals: Addressing Security Risk Week 3 Quiz Answer

Week 3 —- Quiz 1 Answer

Question 1)

What requirement must you adhere to in order to deploy an AWS CloudHSM?

  • Deploy an EBS volume for the HSM
  • Run the HSM in two regions
  • Provision the HSM in a VPC
  • Call AWS Support first to enable it

Question 2)

What AWS KMS keys are used to encrypt and decrypt data in AWS?

  • AWS master keys
  • Seller recrypt keys
  • User recrypt keys
  • Customer master keys

Question 3)

How much data can you encrypt/decrypt using a Customer Master Key?

  • Up to 1MB
  • Up to 4MB
  • Up to 4KB
  • Up to 4TB

Week 3 —- Quiz 2 Answer

Question 1)

The purpose of encrypting data when it is in transit between systems and services is to prevent (choose 3 correct answers):

  • eavesdropping
  • unauthorized copying
  • unauthorized alterations
  • unauthenticated server and client communication

Question 2)

Which protocol below is an industry-standard cryptographic protocol used for encrypting data at the transport layer?

  • X.509
  • T​LS
  • IPSec

Question 3)

How do you encrypt an existing unencrypted EBS volume?

  • Take a snapshot for EBS volume, and create new encrypted volume for this snapshot
  • Enable encryption for EC2 instance, which will encrypt the attached EBS volumes
  • EBS volumes are encrypted at rest by default
  • Enable Encryption by Default feature

Question 4)

Can you encrypt just a subset of items in a DynamoDB table?

  • ​Yes
  • N​o

Question 5)

When you enable encryption for the RDS DB instance, what would not be encrypted?

  • Automated backups
  • Snapshots
  • JBDC connection
  • Read Replicas
  • Transaction logs