Which application flow would meet the data protection requirements on AWS?

By:
On:
In: SCS-C01
Tagged:
With: 0 Comments
A pharmaceutical company has digitized versions of historical prescriptions stored on premises.The company would like to move these prescriptions to AWS and perform analytics on the data in them.Any operation with this data requires that the data be encrypted in transit and at rest.

Which application flow would meet the data protection requirements on AWS?

Digitized files -> Amazon Kinesis Data Analytics

Digitized files -> Amazon Kinesis Data Firehose -> Amazon S3 -> Amazon Athena

Digitized files -> Amazon Kinesis Data Streams -> Kinesis Client Library consumer -> Amazon S3 -> Athena

Digitized files -> Amazon Kinesis Data Firehose -> Amazon Elasticsearch

Explanations:

Amazon Kinesis Data Analytics is used for processing real-time streaming data, not for storing or analyzing historical files in Amazon S3 or Athena. Additionally, there is no direct mention of encryption in transit and at rest.

Amazon Kinesis Data Firehose allows for secure ingestion of data into Amazon S3, which supports encryption in transit (via SSL/TLS) and at rest (via SSE). Amazon Athena can be used to query the data securely.

While Kinesis Data Streams could be used, it does not directly store data in S3 without additional processing steps. The Kinesis Client Library and the lack of encryption guarantee make it less suitable compared to Option B.

Amazon Elasticsearch is typically used for search and log analytics, not for storing encrypted historical data. It does not meet the data protection requirements in terms of secure storage and querying like S3 and Athena in Option B.

Leave a Reply

Your email address will not be published. Required fields are marked *

seven + fourteen =