A company is running its application on the most recent generation of hare metal Amazon EC2 instances. A developer is adding a low-latency computation feature to the application. The feature depends on highly sensitive personally identifiable information (PII). When computation occurs on unencrypted data, the feature needs to run in an isolated environment that provides CPU and memory isolation.
Which solution will meet these requirements?
A. Build and deploy the feature on the original EC2 instance store.
B. Add the now feature in the original application. Deploy the application on a Dedicated Host.
C. Package the now feature and deploy the now feature on AWS Lambda. Use AWS Key Management Service (AWS KMS) to encrypt and decrypt the PII.
D. Build and deploy the now feature as part of the original application. Run the feature on AWS Nitro Enclaves.
Which solution will meet these requirements?
A. Build and deploy the feature on the original EC2 instance store.
B. Add the now feature in the original application. Deploy the application on a Dedicated Host.
C. Package the now feature and deploy the now feature on AWS Lambda. Use AWS Key Management Service (AWS KMS) to encrypt and decrypt the PII.
D. Build and deploy the now feature as part of the original application. Run the feature on AWS Nitro Enclaves.