Correct answer - "Specify a KMS key to use" : For AWS CodeBuild to encrypt its build output
artifacts, it needs access to an AWS KMS customer master key (CMK). By default, AWS CodeBuild
uses the AWS-managed CMK for Amazon S3 in your AWS account.
Incorrect:
"Use an AWS Lambda Hook" - Code hook is used for integration with Lambda
"Use the AWS Encryption SDK" - The SDK just makes it easier for you to implement encryption best
practices in your application
"Use In Flight encryption (SSL)" - SSL is usually for internet traffic which in this case will be
using internal traffic through AWS