Note: This questions is part of a series of questions that use the same or similar answer choices. An
answer choice may be correct for more than one question in the series. Each question is independent
of the other questions in this series. Information and details provided in a question apply only to that
question.
You deploy Microsoft SQL Server to a virtual machine in Azure. You distribute the database files and filegroups
across multiple Azure storage disks.
You must be able to manage the databases as individual entities by using SQL Server Management Studio. Alldata in the databases must be stored encrypted. Backups must be encrypted by using the same key as the live
copy of the database.
You need to secure the data.
What should you implement?

A.
transport-level encryption

B.
cell-level encryption

C.
Transparent Data Encryption

D.
Always Encrypted

E.
Encrypting File System

F.
BitLocker

G.
dynamic data masking

Explanation:
Transparent data encryption (TDE) encrypts your databases, associated backups, and transaction log files at
rest without requiring changes to your applications.
TDE encrypts the storage of an entire database by using a symmetric key called the database encryption key.
In SQL Database the database encryption key is protected by a built-in server certificate. The built-in server
certificate is unique for each SQL Database server.
https://msdn.microsoft.com/en-us/library/dn948096.aspx