Amazon Exam DVA-C01 Topic 2 Question 63 Discussion

Actual exam question for Amazon's DVA-C01 exam

Question #: 63
Topic #: 2

A developer is creating a Java application that will store sensitive data in an Amazon DynamoDB table. The data must be encrypted at all times.

How can the developer meet this requirement?

AEnable encryption at rest by using an AWS Key Management Service (AWS KMS) AWS owned key for the DynamoDB table.

BEnable encryption at rest by using an AWS Key Management Service (AWS KMS) customer managed key for the DynamoDB table.

CImplement client-side encryption in the application code by using the DynamoDB Encryption Client.

DUse an HTTPS connection to encrypt data in transit.

Show Suggested Answer

Suggested Answer: C

Client-side and server-side encryption:

'DynamoDB Encryption Client' supports client-side encryption, where you encrypt your table data before you send it to DynamoDB. However, DynamoDB provides a server-side encryption at rest feature that transparently encrypts your table when it is persisted to disk and decrypts it when you access the table.

https://docs.aws.amazon.com/dynamodb-encryption-client/latest/devguide/client-server-side.html

by Arminda at Feb 07, 2023, 04:24 AM

Limited Time Offer

25%

Off

Get Premium DVA-C01 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel

Currently there are no comments in this discussion, be the first to comment!