Comprehensive and Detailed Explanation From Exact AWS AI documents:
To secure data in Amazon Q Business, AWS recommends:
AWS KMS (A) to encrypt data at rest and manage encryption keys.
AWS IAM (E) to control authentication and authorization for users and services.
Together, these services ensure:
Strong access control
Data confidentiality
Compliance with enterprise security requirements
Why the other options are incorrect:
Cross-account access (B) does not inherently ensure privacy.
Amazon Inspector (C) is for vulnerability scanning, not authentication.
Public access (D) violates security best practices.
AWS AI document references:
Amazon Q Business Security Overview
Data Protection with AWS KMS
Access Control with AWS IAM
