Exam AWS Certified Cloud Practitioner CLF-C02 topic 1 question 5 discussion

based on docs, AWS DynamoDB is automatically encrypted your data as default (but RDS you must turn on this feature by your self) ref: https://docs.aws.amazon.com/amazondynamodb/latest/developerguide/EncryptionAtRest.html ref: https://docs.aws.amazon.com/AmazonRDS/latest/UserGuide/Overview.Encryption.html#Overview.Encryption.Determining

Under the AWS Shared Responsibility Model, the customer's responsibilities when using Amazon DynamoDB include: C. Access to DynamoDB tables The customer is responsible for managing and controlling access to their DynamoDB tables. This includes defining appropriate permissions, user access control, and authentication mechanisms to ensure that only authorized users or services can access the tables. The other options are not customer responsibilities: D. Encryption of data at rest in DynamoDB: AWS provides encryption of data at rest as a built-in feature for DynamoDB. The customer can enable encryption for their tables, but AWS handles the actual implementation and management of the encryption process. Therefore, the correct customer responsibility is C. Access to DynamoDB tables.

Customers are reponsible for security in the cloud-meaning how they configure and use AWS service

C is correct

Maintaining access to Dynamo DB tables

Customer responsibility includes setting IAM policies and permissions to control who can access their DynamoDB tables.

physical security of Dynamodb

authorizing the access

access

The customer responsibility include access to DynamoDB

C. Access to DynamoDB tables

C. Access to DynamoDB tables

Customers are responsible for controlling the encryption of their data.

C. Access to DynamoDB tables

based on docs, AWS DynamoDB is automatically encrypted your data as default (but RDS you must turn on this feature by your self) ref: https://docs.aws.amazon.com/amazondynamodb/latest/developerguide/EncryptionAtRest.html

Under the AWS Shared Responsibility Model, the responsibility for certain aspects of a service is divided between AWS and the customer. Regarding Amazon DynamoDB: The customer is responsible for: C. Access to DynamoDB tables This means that the customer is responsible for managing and controlling access to their DynamoDB tables, including setting up appropriate IAM (Identity and Access Management) permissions and policies. AWS is responsible for: A. Physical security of DynamoDB B. Patching of DynamoDB D. Encryption of data at rest in DynamoDB AWS takes care of the physical infrastructure, patches and updates the DynamoDB service, and provides encryption mechanisms for data at rest. It's important for customers to be aware of their responsibilities and configure access controls accordingly to ensure the security of their DynamoDB tables.

C is correct.