New Year Sale 2026! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

Microsoft SC-100 Exam - Topic 11 Question 14 Discussion

Actual exam question for Microsoft's SC-100 exam
Question #: 14
Topic #: 11
[All SC-100 Questions]

You are designing the encryption standards for data at rest for an Azure resource

You need to provide recommendations to ensure that the data at rest is encrypted by using AES-256 keys. The solution must support rotating the encryption keys monthly.

Solution: For Azure SQL databases, you recommend Transparent Data Encryption (TDE) that uses customer-managed keys (CMKs).

Does this meet the goal?

Show Suggested Answer Hide Answer
Suggested Answer: A

by Amber at Oct 25, 2022, 11:44 AM

Limited Time Offer

25%

Off

Get Premium SC-100 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

0/2000 characters
Submit Cancel
Moira
4 months ago
Yes, this is a solid approach for data encryption!
upvoted 0 times
...
Cherelle
4 months ago
I think it does, but double-check the key rotation process.
upvoted 0 times
...
Bok
4 months ago
Wait, can you really rotate keys monthly with TDE?
upvoted 0 times
...
Paris
5 months ago
Totally agree, this meets the requirements!
upvoted 0 times
...
Desiree
5 months ago
TDE with CMKs supports AES-256, so that's good!
upvoted 0 times
...
Louvenia
5 months ago
I’ve seen similar questions before, and I think TDE does allow for key rotation, but I’m not 100% confident it meets the monthly rotation requirement.
upvoted 0 times
...
Vincent
5 months ago
I feel like TDE is a solid choice for encryption at rest, but I’m uncertain if it meets all the requirements for key management.
upvoted 0 times
...
Alida
5 months ago
I remember a practice question where we discussed TDE and CMKs, and I think it did mention key rotation, but I can't recall the specifics.
upvoted 0 times
...
Bernadine
5 months ago
I think using TDE with customer-managed keys is a good approach, but I'm not entirely sure if it supports monthly key rotation.
upvoted 0 times
...
Daniel
5 months ago
Hmm, I'm a little unsure about the difference between A and B here. I'll need to think through the concepts of premium rates and matching costs to income to decide the best answer.
upvoted 0 times
...
Telma
5 months ago
Hmm, I'm not sure about this one. I'll need to think it through carefully to make sure I don't miss any details.
upvoted 0 times
...
Blythe
5 months ago
I think PAI nodes can only be added after PAI experiments are created, but I'm not completely sure.
upvoted 0 times
...
Kimbery
5 months ago
I think there was a similar practice question about failover strategies we looked at. It might be related to option C, but that handover mechanism seems a bit complicated.
upvoted 0 times
...

Save Cancel