Happy to Announce Our New Discussion Forum | Join Now

WhizQuiz Oct 18

Your company is planning to host an application on a set of EC2 Instances. There is a requirement to complete end to end encryption for the data to ensure that the application is (HIPAA) compliant. How can you achieve this?

  • Ensure that the traffic is encrypted using KMS
  • Setup a VPN connection between the EC2 Instance and the Internet
  • Setup a Direct Connect connection between the EC2 Instance and the Internet
  • Use SSL to encrypt all the data at the application layer

0 voters

Correct Answer is D:

Since the data needs to be encrypted end to end, use an SSL certificate which can be mapped to the application.

Option A is incorrect because this can be used to encrypt data at rest

Option B is incorrect because this will not encrypt traffic end to end

Option C is incorrect because this is not a feasible option for this scenario

Below is an example on how to use SSL with an Apache Instance on EC2

https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/SSL-on-an-instance.html

So, the correct answer is: Use SSL to encrypt all the data at the application layer

1 Like

Hi there:)

You explained the reasons behind the correct and incorrect answers by mentioning key differences b/w them. But I want to add one referral link here for better understanding.

https://docs.aws.amazon.com/elasticloadbalancing/latest/classic/elb-create-https-ssl-load-balancer.html

I hope this helps:)

Cheers…!

2 Likes

Yes! It’s helpful. Keep sharing info with us.

1 Like

Hi All,
We need to use SSL to encrypt the data, and below link helps us in understanding the same form AWS.

Thanks
Viswanath