This is a dedicated watch page for a single video.
A global cloud-based payment processing system is hosted in AWS which accepts credit card payments as well as cryptocurrencies such as Bitcoin. It is deployed in AWS which uses EC2, DynamoDB, S3, and CloudFront to process the payments. Since they are accepting credit card information from the users, they are required to be compliant with the Payment Card Industry Data Security Standard (PCI DSS). It was found that the credit card numbers are not properly encrypted on the recent 3rd-party audit and hence, their system failed the PCI DSS compliance test. You were hired by the company to solve this issue so they can release the product in the market as soon as possible. In addition, you also have to improve performance by increasing the proportion of your viewer requests that are served from CloudFront edge caches instead of going to your origin servers for content. Which of the following is the BEST option to protect and encrypt the sensitive credit card information of the users and improve the cache hit ratio of your CloudFront distribution?