AWS Certified SysOps Administrator – Associate (legacy) — Question 726

In Amazon VPC, the ______ encryption function is used to ensure privacy among both IKE and IPsec Security Associations.

Answer options

• A. AES 192-bit
• B. AES 256-bit
• C. SHA 180-bit
• D. SHA 2-bit

Correct answer: B

Explanation

Amazon VPC utilizes the Advanced Encryption Standard with a 256-bit key (AES-256) to secure both IKE and IPsec Security Associations, providing robust confidentiality. SHA algorithms, such as SHA-1 or SHA-2, are used for data integrity and authentication rather than encryption. AES-256 is preferred over AES-192 as the standard high-strength encryption function for securing VPN connections in AWS.