SCS-C02 Data Protection • Set 8
SCS-C02 Data Protection Practice Test 8 — 15 questions with explanations. Free, no signup.
A company uses AWS KMS to encrypt data at rest in Amazon RDS for MySQL. The security team needs to ensure that the RDS instance can only be decrypted by a specific IAM role used by the production application, and not by any other IAM user or role. What is the most secure way to achieve this?