Your company has a data warehouse that contains a database named DB1.

You plan to implement data encryption DB1.

You need to configure DB1 to meet the following requirements:

Prevent the system administrators of App1 from reading the Personally

Identifiable Information (PIII) stored in DB1.

Ensure that all backups are stored in an on-premises local drive for three days.

Ensure that all backups are stored in a remote location for 10 days.

Encrypt all backups.

All solutions must support the ODBC D

river for Microsoft SQL Server 2012.

Which two solutions should you implement for DB1? Each correct answer presents part of the solution.

NOTE:

Each correct selection is worth one point.

A. Encrypt within the application tier.

B. Backup DB1 by using VSS

snapshots.

C. Implement the Always Encrypted feature.

D. Backup DB1 to a disk and a URL by using MIRROR TO.

E. Encrypt within DB1 by using EncryptByPassword.

Explanation:

The backup command argument has the MIRROR TO option

Always Encrypted i

s a new data encryption technology in Azure SQL Database and SQL Server that helps protect sensitive data at rest on the server, during movement between client and server, and while the data is in use. Always Encrypted ensures that sensitive data never app

ears as plaintext inside the database system.

References:

https://docs.microsoft.com/en-us/azure/sql-database/sql-database-always-encrypted-azure-key-vault

https://docs.microsoft.com/en-us/sql/relational-databases/backup-restore/sql-server-backup-to-url?

view=sql-server-2017