Topic 1 Question 180
A company has an application that runs as a series of AWS Lambda functions. Each Lambda function receives data from an Amazon Simple Notification Service (Amazon SNS) topic and writes the data to an Amazon Aurora DB instance.
To comply with an information security policy, the company must ensure that the Lambda functions all use a single securely encrypted database connection string to access Aurora.
Which solution will meet these requirements?
Use IAM database authentication for Aurora to enable secure database connections for all the Lambda functions.
Store the credentials and read the credentials from an encrypted Amazon RDS DB instance.
Store the credentials in AWS Systems Manager Parameter Store as a secure string parameter.
Use Lambda environment variables with a shared AWS Key Management Service (AWS KMS) key for encryption.
ユーザの投票
コメント(4)
- 正解だと思う選択肢: C
C. AWS Systems Manager Parameter Store offers a more centralized way to manage encrypted secrets across multiple services than Lambda environment variables, making it a better fit for this scenario.
👍 8dilleman2023/10/11 - 正解だと思う選択肢: D
The correct answer is (D).
Solution (D) is the best option because it uses Lambda environment variables with an AWS Key Management Service (AWS KMS) shared key for encryption.
👍 3Digo30sp2023/10/06 - 正解だと思う選択肢: A👍 3TallManDan2023/10/17
シャッフルモード