ExamTopics Logo
Mail Us[email protected]
Menu
Amazon Discussions
exam questions

Exam AWS Certified Developer - Associate DVA-C02 All Questions

View all questions & answers for the AWS Certified Developer - Associate DVA-C02 exam
Go to Exam

Exam AWS Certified Developer - Associate DVA-C02 topic 1 question 9 discussion

Exam question from Amazon's AWS Certified Developer - Associate DVA-C02
Question #: 9
Topic #: 1
[All AWS Certified Developer - Associate DVA-C02 Questions]

A company wants to share information with a third party. The third party has an HTTP API endpoint that the company can use to share the information. The company has the required API key to access the HTTP API.
The company needs a way to manage the API key by using code. The integration of the API key with the application code cannot affect application performance.
Which solution will meet these requirements MOST securely?

  • A. Store the API credentials in AWS Secrets Manager. Retrieve the API credentials at runtime by using the AWS SDK. Use the credentials to make the API call.
  • B. Store the API credentials in a local code variable. Push the code to a secure Git repository. Use the local code variable at runtime to make the API call.
  • C. Store the API credentials as an object in a private Amazon S3 bucket. Restrict access to the S3 object by using IAM policies. Retrieve the API credentials at runtime by using the AWS SDK. Use the credentials to make the API call.
  • D. Store the API credentials in an Amazon DynamoDB table. Restrict access to the table by using resource-based policies. Retrieve the API credentials at runtime by using the AWS SDK. Use the credentials to make the API call.
Show Suggested Answer Hide Answer
Suggested Answer: A 🗳️
by Warlord_92 at March 20, 2023, 7:11 a.m.
Disclaimers:
  • - ExamTopics website is not related to, affiliated with, endorsed or authorized by Amazon.
  • - Trademarks, certification & product names are used for reference only and belong to Amazon.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
Kristijan92
Highly Voted 1 year, 8 months ago
Selected Answer: A
answer A
upvoted 13 times
...
elfinka9
Highly Voted 1 year, 4 months ago
Selected Answer: A
Why B is marked as correct ????
upvoted 9 times
ACurryDeveloper
4 months, 1 week ago
Why is developer being a benchod? A, b, c or d?
upvoted 1 times
...
...
trieudo
Most Recent 2 days, 2 hours ago
Selected Answer: A
keyword: MOST securely ==> discard B first: If the code repository is compromised, the API key could be exposed. ==> discard C, D after: this requires setting up and managing the DynamoDB table and resource-based policies ==> can make mistake from ppl, then creating issue about security A: AWS Secrets Manager is a specialized service designed to securely store sensitive information like API keys.
upvoted 1 times
...
Bibay
2 months, 2 weeks ago
Selected Answer: A
The MOST secure solution to manage the API key while ensuring that the integration of the API key with the application code does not affect application performance is to store the API key in AWS Secrets Manager. The API key can be retrieved at runtime by using the AWS SDK, which does not impact application performance. Therefore, option A is the correct answer. Option B is not secure as it exposes the API key to anyone with access to the code repository, which increases the risk of unauthorized access. Option C and D may work, but they require additional configuration and permissions management. Storing the API key in an S3 bucket or a DynamoDB table could expose the key to unauthorized users if proper IAM policies are not in place. Therefore, option A is the most secure and simple solution to manage the API key while not affecting the application's performance.
upvoted 1 times
...
nkroker
5 months, 1 week ago
B is certainly a wrong answer because if you read the application development with AWS case study and also the best practices then in it the AWS itself does not encourage the developer to store the sensitive API and license keys in code on the other hand it encourages to use the provided solutions like KMS, Secrets Manager and Parameter Store.
upvoted 1 times
...
297dfbb
6 months ago
Selected Answer: A
A is correct. B is wrong because you never store credentials in source control.
upvoted 1 times
...
c949c84
6 months ago
Selected Answer: A
Most secure
upvoted 2 times
...
65703c1
6 months, 3 weeks ago
Selected Answer: A
A is the correct answer.
upvoted 1 times
...
Prosen2522
7 months, 1 week ago
A is it
upvoted 1 times
...
badsati
8 months, 2 weeks ago
Straight A
upvoted 1 times
...
bednark
10 months, 3 weeks ago
Selected Answer: A
A is correct
upvoted 1 times
...
leonardoliveros
1 year ago
Selected Answer: A
B isn't secury A is the best option for this scenary
upvoted 2 times
...
gullyboy77
1 year, 2 months ago
Selected Answer: A
Secret Manager is the safest way to store secrets in AWS.
upvoted 2 times
...
chvtejaswi
1 year, 3 months ago
Selected Answer: A
Answer A
upvoted 2 times
...
hmdev
1 year, 3 months ago
Selected Answer: A
A seems to be the most secure and correct. Always use Secret Manger to store secrets, as the name implies.
upvoted 1 times
...
Yuxing_Li
1 year, 3 months ago
Selected Answer: A
A is correct
upvoted 1 times
...
sivuca1
1 year, 3 months ago
Selected Answer: A
The other options (B, C and D) are not as safe or manageable:
upvoted 1 times
...
Load full discussion...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago