Encryption

AWS DVA-C02 Drill: Securing S3 Data - Client-Side Encryption with KMS and In-Transit Protection

1 July 2025·848 words·4 mins

Certification Drills AWS DVA-C02 S3 KMS Encryption

Analyzing an S3 encryption scenario to identify the correct client-side KMS encryption implementation and in-transit HTTPS enforcement.

AWS DVA-C02 Drill: Implementing Caching Layers - Encrypted and Highly Available Caches

1 July 2025·750 words·4 mins

Certification Drills AWS DVA-C02 ElastiCache Redis Caching Encryption

Analyzing caching implementation options to meet encryption and availability requirements in a database-backed application.

AWS DVA-C02 Drill: Enforcing Encryption in Transit - Secure Transport Condition in S3 Access

1 July 2025·832 words·4 mins

Certification Drills AWS DVA-C02 S3 AWS KMS Encryption Security

Analyzing the enforcement of encryption in transit during cross-account S3 GetObject requests using resource-based policies.

AWS SOA-C02 Drill: EFS Encryption - Enabling Encryption on Existing File Systems

15 June 2025·775 words·4 mins

Certification Drills AWS SOA-C02 EFS Encryption

Analyzing an Amazon EFS encryption scenario to identify the correct implementation strategy without downtime.

AWS DVA-C02 Drill: Server-Side Encryption - Ensuring Auditability with KMS

15 June 2025·661 words·4 mins

Certification Drills AWS DVA-C02 Amazon S3 KMS Encryption

Analyzing server-side encryption options to meet company audit trail requirements for KMS key usage.

AWS DVA-C02 Drill: Lambda /tmp Encryption - Secure Key Management Strategies

15 June 2025·812 words·4 mins

Certification Drills AWS DVA-C02 Lambda KMS Encryption

Analyzing a Lambda serverless application scenario focused on encrypting temporary /tmp data prior to write.

AWS DVA-C02 Drill: DynamoDB Encryption - Default vs. KMS Key Types

15 June 2025·740 words·4 mins

Certification Drills AWS DVA-C02 DynamoDB Encryption AWS CLI

Analyzing the Amazon DynamoDB server-side encryption configuration to identify the correct approach for AWS owned keys.

AWS DVA-C02 Drill: CloudWatch Logs Encryption - Seamless KMS Integration

15 June 2025·804 words·4 mins

Certification Drills AWS DVA-C02 CloudWatch Logs KMS Encryption

Analyzing the encryption options for CloudWatch Logs with KMS keys to identify the easiest and correct solution for developers.

AWS DVA-C02 Drill: CloudFront Origin Protocol & Viewer Encryption - Securing Data in Transit

15 June 2025·821 words·4 mins

Certification Drills AWS DVA-C02 CloudFront Encryption Origin Protocol Policy Viewer Protocol Policy

Analyzing CloudFront protocol settings to ensure encrypted data transmission in a distributed web application environment.

AWS DVA-C02 Drill: Client-Side Encryption - Proper Use of KMS Data Keys

15 June 2025·859 words·5 mins

Certification Drills AWS DVA-C02 KMS Encryption GenerateDataKey

Analyzing the client-side encryption workflow to identify the correct application coding pattern for unique data keys per file.

AWS DVA-C02 Drill: CloudFront Security - Enforcing End-to-End Encryption

15 May 2025·702 words·4 mins

Certification Drills AWS DVA-C02 CloudFront HTTPS Encryption

Analyzing a CloudFront encryption scenario to identify the correct configuration for end-to-end HTTPS traffic.

AWS DVA-C02 Drill: Client-Side Encryption - Mastering GenerateDataKey for Lambda Uploads

27 April 2025·926 words·5 mins

Certification Drills AWS DVA-C02 Lambda KMS GenerateDataKey Encryption

Analyzing the client-side encryption approach in a Lambda-to-S3 workflow to identify the correct implementation strategy.

AWS SOA-C02 Drill: Secure Log Storage with CloudFront - Choosing the Right Destination

15 April 2025·786 words·4 mins

Certification Drills AWS SOA-C02 CloudFront S3 Encryption Logging

Analyzing secure log storage strategies from CloudFront to meet encryption and centralization requirements.

AWS DVA-C02 Drill: S3 Encryption Types - Ensuring Data Confidentiality on Upload

1 April 2025·773 words·4 mins

Certification Drills AWS DVA-C02 S3 Encryption

Analyzing the S3 encryption options to identify the best approach for protecting user-uploaded documents.

AWS DVA-C02 Drill: Kinesis Data Streams Encryption - Server-Side Encryption vs. Client-Side Approaches

15 February 2025·693 words·4 mins

Certification Drills AWS DVA-C02 Kinesis Data Streams Encryption

Analyzing Kinesis Data Streams encryption strategies to identify the correct implementation approach for a developer.

AWS DVA-C02 Drill: DynamoDB Encryption - Customer-Managed CMKs with AWS KMS

15 February 2025·809 words·4 mins

Certification Drills AWS DVA-C02 DynamoDB KMS Encryption

Analyzing the DynamoDB encryption scenario to identify the correct implementation strategy using AWS KMS customer managed keys.

AWS SOA-C02 Drill: Encrypting Multi-AZ RDS Instances - Meeting Security Compliance

15 January 2025·688 words·4 mins

Certification Drills AWS SOA-C02 RDS Encryption Multi-AZ

Analyzing an RDS Multi-AZ encryption compliance scenario to identify the correct remediation approach.