Final answer:
The service that AWS use to secure the volume's data at rest is using your keys in AWS Key Management Service and using Amazon-managed keys in AWS. Thus, options 1 and 2 are the correct options.
Step-by-step explanation:
In the context of Amazon Web Services (AWS), when a health organization is using an Amazon Elastic Compute Cloud (EC2) with Elastic Block Store (EBS) volumes, the service used by AWS to encrypt EBS volumes is called the AWS Key Management Service. This service provides managed creation and control of encryption keys that secure data. EBS uses these keys to offer encryption at rest, ensuring that data is encrypted as it is stored on the disk. AWS uses encryption algorithms that are compliant with various standards, including HIPAA, and integrates with EBS to enable seamless encryption and decryption processes during data access.
By selecting the encrypted option when creating an EBS volume or by using the AWS Management Console to encrypt an existing volume, organizations can ensure their data is protected. It is worth mentioning that encryption and decryption occur transparently and do not require additional management from the user. AWS is designed to meet the compliance and data protection requirements necessary for handling sensitive healthcare data, making it suitable for applications that store health records.
Thus, options 1 and 2 are the correct options.
Probably the full options are:
a health organization is using a large dedicated ec2 instance with multiple ebs volumes to host its health records web application. The EBS volumes must be encrypted due to the confidentiality of the data that they are handling and also to comply with the HIPAA (health insurance portability and Accountability Act) standard. In EBS encryption, what service does AWS use to secure the volume's data at rest? (select two.)
a. By using your own keys in AWS Key Management Service
b. By using Amazon-managed keys in AWS.
c. By only using AWS Key Management Service.