ExamTopics Logo
Mail Us[email protected]
Menu
Amazon Discussions
exam questions

Exam AWS Certified Developer - Associate DVA-C02 All Questions

View all questions & answers for the AWS Certified Developer - Associate DVA-C02 exam
Go to Exam

Exam AWS Certified Developer - Associate DVA-C02 topic 1 question 9 discussion

Exam question from Amazon's AWS Certified Developer - Associate DVA-C02
Question #: 9
Topic #: 1
[All AWS Certified Developer - Associate DVA-C02 Questions]

A company wants to share information with a third party. The third party has an HTTP API endpoint that the company can use to share the information. The company has the required API key to access the HTTP API.
The company needs a way to manage the API key by using code. The integration of the API key with the application code cannot affect application performance.
Which solution will meet these requirements MOST securely?

  • A. Store the API credentials in AWS Secrets Manager. Retrieve the API credentials at runtime by using the AWS SDK. Use the credentials to make the API call.
  • B. Store the API credentials in a local code variable. Push the code to a secure Git repository. Use the local code variable at runtime to make the API call.
  • C. Store the API credentials as an object in a private Amazon S3 bucket. Restrict access to the S3 object by using IAM policies. Retrieve the API credentials at runtime by using the AWS SDK. Use the credentials to make the API call.
  • D. Store the API credentials in an Amazon DynamoDB table. Restrict access to the table by using resource-based policies. Retrieve the API credentials at runtime by using the AWS SDK. Use the credentials to make the API call.
Show Suggested Answer Hide Answer
Suggested Answer: A 🗳️
by Warlord_92 at March 20, 2023, 7:11 a.m.
Disclaimers:
  • - ExamTopics website is not related to, affiliated with, endorsed or authorized by Amazon.
  • - Trademarks, certification & product names are used for reference only and belong to Amazon.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
Kristijan92
Highly Voted 2 years, 4 months ago
Selected Answer: A
answer A
upvoted 13 times
...
elfinka9
Highly Voted 2 years ago
Selected Answer: A
Why B is marked as correct ????
upvoted 9 times
ACurryDeveloper
1 year ago
Why is developer being a benchod? A, b, c or d?
upvoted 1 times
...
...
anandkg
Most Recent 4 months ago
Selected Answer: A
most secure approach
upvoted 1 times
...
ocharo
4 months, 2 weeks ago
Selected Answer: A
https://docs.aws.amazon.com/secretsmanager/latest/userguide/intro.html
upvoted 1 times
...
sumanshu
8 months ago
Selected Answer: A
AWS Secrets Manager is purpose-built for securely managing sensitive data such as API keys
upvoted 3 times
...
trieudo
8 months, 1 week ago
Selected Answer: A
keyword: MOST securely ==> discard B first: If the code repository is compromised, the API key could be exposed. ==> discard C, D after: this requires setting up and managing the DynamoDB table and resource-based policies ==> can make mistake from ppl, then creating issue about security A: AWS Secrets Manager is a specialized service designed to securely store sensitive information like API keys.
upvoted 2 times
...
Bibay
10 months, 4 weeks ago
Selected Answer: A
The MOST secure solution to manage the API key while ensuring that the integration of the API key with the application code does not affect application performance is to store the API key in AWS Secrets Manager. The API key can be retrieved at runtime by using the AWS SDK, which does not impact application performance. Therefore, option A is the correct answer. Option B is not secure as it exposes the API key to anyone with access to the code repository, which increases the risk of unauthorized access. Option C and D may work, but they require additional configuration and permissions management. Storing the API key in an S3 bucket or a DynamoDB table could expose the key to unauthorized users if proper IAM policies are not in place. Therefore, option A is the most secure and simple solution to manage the API key while not affecting the application's performance.
upvoted 2 times
...
nkroker
1 year, 1 month ago
B is certainly a wrong answer because if you read the application development with AWS case study and also the best practices then in it the AWS itself does not encourage the developer to store the sensitive API and license keys in code on the other hand it encourages to use the provided solutions like KMS, Secrets Manager and Parameter Store.
upvoted 1 times
...
297dfbb
1 year, 2 months ago
Selected Answer: A
A is correct. B is wrong because you never store credentials in source control.
upvoted 1 times
...
c949c84
1 year, 2 months ago
Selected Answer: A
Most secure
upvoted 2 times
...
65703c1
1 year, 3 months ago
Selected Answer: A
A is the correct answer.
upvoted 1 times
...
Prosen2522
1 year, 3 months ago
A is it
upvoted 1 times
...
badsati
1 year, 4 months ago
Straight A
upvoted 1 times
...
bednark
1 year, 7 months ago
Selected Answer: A
A is correct
upvoted 1 times
...
leonardoliveros
1 year, 9 months ago
Selected Answer: A
B isn't secury A is the best option for this scenary
upvoted 2 times
...
gullyboy77
1 year, 10 months ago
Selected Answer: A
Secret Manager is the safest way to store secrets in AWS.
upvoted 2 times
...
chvtejaswi
1 year, 11 months ago
Selected Answer: A
Answer A
upvoted 2 times
...
Load full discussion...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel