DVA-C02 - Security - Section 2.6
Protect data in transit and at rest using TLS, AWS Certificate Manager and the correct choice between client-side and server-side encryption.
Protect data in transit using TLS certificates provisioned and renewed through AWS Certificate Manager, and choose between server-side and client-side encryption for data at rest based on who controls the keys. Recognise which approach places encryption responsibility with AWS versus with the application.
AWS Certificate ManagerTLSServer-side encryptionClient-side encryption
More in this domain
Back to all Security objectives, or the DVA-C02 cert hub.
Examworthy is not affiliated with or endorsed by Amazon Web Services. Original, blueprint-aligned practice material only.