Note: This question is part of a series of questions that present the same scenario.
Each question in the series contains a unique solution that might meet the stated goals.
Some question sets might have more than one correct solution, while others might not have a correct solution.
After you answer a question in this section, you will NOT be able to return to it.
As a result, these questions will not appear in the review screen.
You are developing a medical records document management website.
The website is used to store scanned copies of patient intake forms.
If the stored intake forms are downloaded from storage by a third party, the contents of the forms must not be compromised.
You need to store the intake forms according to the requirements.
Solution: Store the intake forms as Azure Key Vault secrets.
Does the solution meet the goal?
Click on the arrows to vote for the correct answer
A. B.B.
Instead use an Azure Key vault and public key encryption.
Store the encrypted from in Azure Storage Blob storage.
The solution provided of storing the intake forms as Azure Key Vault secrets does not meet the stated goal of ensuring that the contents of the forms are not compromised if downloaded by a third party.
Azure Key Vault is a cloud-based service that provides a secure location for storing and managing cryptographic keys, secrets, and certificates. It is designed to help safeguard cryptographic keys and other secrets used by cloud applications and services.
However, storing the scanned copies of patient intake forms as Azure Key Vault secrets does not offer the necessary level of protection to ensure that the contents of the forms are not compromised if downloaded by a third party. Azure Key Vault is designed to protect secrets like cryptographic keys, connection strings, and other sensitive information that are used to authenticate and authorize access to cloud resources. It is not designed to protect the contents of files or documents stored within it.
To ensure that the contents of the intake forms are not compromised if downloaded by a third party, a more suitable solution would be to store the intake forms as encrypted blobs in Azure Storage, and use Azure Key Vault to manage and secure the encryption keys used to encrypt and decrypt the blobs. This would ensure that the contents of the intake forms remain encrypted and secure, even if they are downloaded by a third party.
Therefore, the solution of storing the intake forms as Azure Key Vault secrets does not meet the stated goal, and the answer is B. No.