A healthcare company uses an Amazon EMR cluster to process patient data. The data must be encrypted in transit and at rest. Local volumes in the cluster also need to be encrypted. Which solution will meet these requirements?
Options:
A.
Create Amazon EBS volumes. Enable encryption. Attach the volumes to the existing EMR cluster.
B.
Create an EMR security configuration that encrypts the data and the volumes as required.
C.
Create an EC2 instance profile for the EMR instances. Configure the instance profile to enforce encryption.
D.
Create a runtime role that has a trust policy for the EMR cluster.
Amazon EMR allows the creation of security configurations to specify settings for encrypting data at rest, data in transit, or both. These configurations can be applied to clusters to ensure that data stored in Amazon S3, local disks, and data moving between nodes is encrypted.
By creating and applying an EMR security configuration, the company can ensure that all data processing complies with encryption requirements for sensitive patient data.
Contribute your Thoughts:
Chosen Answer:
This is a voting comment (?). You can switch to a simple comment. It is better to Upvote an existing comment if you don't have anything to add.
Submit