Deal of The Day! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

Google Professional Cloud Database Engineer Exam - Topic 9 Question 57 Discussion

Your organization works with sensitive data that requires you to manage your own encryption keys. You are working on a project that stores that data in a Cloud SQL database. You need to ensure that stored data is encrypted with your keys. What should you do?
D) Use customer-managed encryption keys with Cloud SQL.
A) Export data periodically to a Cloud Storage bucket protected by Customer-Supplied Encryption Keys.
B) Use Cloud SQL Auth proxy.
C) Connect to Cloud SQL using a connection that has SSL encryption.

Google Professional Cloud Database Engineer Exam - Topic 9 Question 57 Discussion

Actual exam question for Google's Professional Cloud Database Engineer exam
Question #: 57
Topic #: 9
[All Professional Cloud Database Engineer Questions]

Your organization works with sensitive data that requires you to manage your own encryption keys. You are working on a project that stores that data in a Cloud SQL database. You need to ensure that stored data is encrypted with your keys. What should you do?

Show Suggested Answer Hide Answer
Suggested Answer: D

by Jettie at Jun 12, 2025, 01:58 PM

Limited Time Offer

25%

Off

Get Premium Professional Cloud Database Engineer Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

0/2000 characters
Submit Cancel
Latanya
6 months ago
C is important for data in transit, but we need to focus on encryption at rest.
upvoted 0 times
...
Cecil
6 months ago
B seems like a solid choice for authentication, but not for key management.
upvoted 0 times
...
Mozell
6 months ago
I think A is a good option too, but not as secure as D.
upvoted 0 times
...
Buck
6 months ago
Wait, can we really manage our own keys in Cloud SQL? Sounds risky!
upvoted 0 times
...
Rochell
6 months ago
Definitely go with D, customer-managed keys are the way to go!
upvoted 0 times
...
Paulene
7 months ago
I recall that using SSL is important for secure connections, but I don't think it directly relates to managing encryption keys in this context.
upvoted 0 times
...
Gayla
7 months ago
I’m a bit confused about the differences between customer-supplied and customer-managed keys. I hope I picked the right one!
upvoted 0 times
...
Regenia
7 months ago
I think we did a practice question similar to this, and I feel like option D was the right choice for managing our own keys.
upvoted 0 times
...
Juliann
7 months ago
I remember studying about customer-managed encryption keys, but I'm not entirely sure if they apply directly to Cloud SQL.
upvoted 0 times
...
Erasmo
8 months ago
I'm not entirely sure about this one. The options seem to cover different approaches, like using SSL encryption or exporting data to Cloud Storage. I'll need to review the details of each option to determine the best solution.
upvoted 0 times
...
Hoa
8 months ago
Okay, I've got this. The question is asking how to ensure the data stored in Cloud SQL is encrypted with our own keys. Option D, using customer-managed encryption keys, is clearly the way to go. I'm confident that's the right answer.
upvoted 0 times
...
Lauran
8 months ago
Hmm, I'm a bit confused here. I'm not sure if exporting data to Cloud Storage is the right approach, or if using the Cloud SQL Auth proxy is necessary. I'll need to think this through carefully.
upvoted 0 times
...
Chaya
8 months ago
This seems like a straightforward encryption question. I think the key is to use customer-managed encryption keys with Cloud SQL, so I'll go with option D.
upvoted 0 times
...
Teresita
11 months ago
Gotta love those customer-supplied encryption keys. Keeps the data safe and the cloud provider honest.
upvoted 0 times
Curtis
10 months ago
C) Connect to Cloud SQL using a connection that has SSL encryption.
upvoted 0 times
...
Vivienne
10 months ago
A) Export data periodically to a Cloud Storage bucket protected by Customer-Supplied Encryption Keys.
upvoted 0 times
...
...
Donte
11 months ago
Customer-managed encryption keys FTW! That's the way to go for sensitive data in the cloud.
upvoted 0 times
...
Latia
11 months ago
I'm not sure. Maybe we should also consider connecting to Cloud SQL using SSL encryption.
upvoted 0 times
...
Tricia
11 months ago
Haha, I bet the Cloud SQL Auth proxy wouldn't even work for this use case. Definitely go with D!
upvoted 0 times
Tesha
10 months ago
Haha, I bet the Cloud SQL Auth proxy wouldn't even work for this use case. Definitely go with D!
upvoted 0 times
...
Ahmad
10 months ago
D) Use customer-managed encryption keys with Cloud SQL.
upvoted 0 times
...
Ashley
10 months ago
C) Connect to Cloud SQL using a connection that has SSL encryption.
upvoted 0 times
...
Valentin
10 months ago
B) Use Cloud SQL Auth proxy.
upvoted 0 times
...
Matthew
10 months ago
A) Export data periodically to a Cloud Storage bucket protected by Customer-Supplied Encryption Keys.
upvoted 0 times
...
...
Cecil
11 months ago
I agree, D is the right answer. Exporting data to Cloud Storage or using SSL encryption alone doesn't give you the same level of control over the encryption keys.
upvoted 0 times
...
Carmela
11 months ago
The answer is clearly D. Using customer-managed encryption keys with Cloud SQL is the best way to ensure that the sensitive data is encrypted with your own keys.
upvoted 0 times
Devon
10 months ago
D) Use customer-managed encryption keys with Cloud SQL.
upvoted 0 times
...
Leontine
10 months ago
C) Connect to Cloud SQL using a connection that has SSL encryption.
upvoted 0 times
...
Iluminada
10 months ago
B) Use Cloud SQL Auth proxy.
upvoted 0 times
...
Kristal
11 months ago
A) Export data periodically to a Cloud Storage bucket protected by Customer-Supplied Encryption Keys.
upvoted 0 times
...
...
Paulene
11 months ago
I agree with Martina. Using customer-managed encryption keys will ensure our data is secure.
upvoted 0 times
...
Martina
12 months ago
I think we should use customer-managed encryption keys with Cloud SQL.
upvoted 0 times
...

Save Cancel