Q316.A solutions architect is designing a disaster recovery solution for a critical workload. The workload stores data in an Amazon S3 bucket that uses server- side encryption and CMK.The company must comply with an RPO of 15 minutes or less for s3 stored objects across different geographic applications in the same AWS account.Objects stored in Amazon s3 need to be at least 99.99% compliant with RPO requirements In the event of a disaster the company needs to be able to recover individual files and objects in different Regions. The solution should require minimal security changes.Which combination of stops should the solutions architect take? (Select THREE )
A.Use Amazon EventBridge to schedule an AWS Lambda function with an elevated IAM role to copy objects to a different S3 bucket every 15 minutes. B.Grant additional permissions to the IAM role for the s3GetObjectVersionForReplication and kms Decrypt kms Encrypt actions to be able to replicate encrypted objects. C.Enable S3 cross Region replication with S3 Replication Time Control (S3 RTC) to replicate objects to an s3 bucket in a different Region. D.In the Destination configuration add the asymmetric AWS KMS CMK and explicitly opt in by enabling replication of encrypted objects using the SourceSelectionCriteria element. E.In the Destination configuration add the symmetric AWS KMS CMK and explicitly opt in by enabling replication of encrypted objects using the SourceSolectionCriteria element. F.Grant additional permissions to the IAM role for tho s3 GetObjectVersion and kms Decrypt kms Encrypt actions to be able to replicate encrypted objects.正确答案BCE
