Deal of The Day! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location PL
Mob_nav_barsMENU

Amazon Exam DVA-C02 Topic 4 Question 38 Discussion

Actual exam question for Amazon's DVA-C02 exam
Question #: 38
Topic #: 4
[All DVA-C02 Questions]

A developer is creating an Amazon DynamoDB table by using the AWS CLI The DynamoDB table must use server-side encryption with an AWS owned encryption key

How should the developer create the DynamoDB table to meet these requirements?

Show Suggested Answer Hide Answer
Suggested Answer: D

Default SSE in DynamoDB:DynamoDB tables are encrypted at rest by default using an AWS owned key (SSE-S3).

No Additional Action Needed:Creating a table without explicitly specifying a KMS key will use this default encryption.


DynamoDB Server-Side Encryption:https://docs.aws.amazon.com/amazondynamodb/latest/developerguide/Encryption

by Cathern at Sep 19, 2024, 06:28 AM

Limited Time Offer

25%

Off

Get Premium DVA-C02 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel
Ronna
9 months ago
I'm not sure, but I think option D might be easier and quicker to implement. Default encryption could be sufficient for some cases.
upvoted 0 times
...
Huey
9 months ago
I agree with Vallie. Using a customer managed key provides more control over encryption and security.
upvoted 0 times
...
Casey
9 months ago
Wait, we're supposed to create an AWS owned key? I thought that was like a secret club that only AWS employees could access.
upvoted 0 times
...
Sheridan
9 months ago
Haha, this question is a real brain-teaser. I bet the developer is wishing they had a crystal ball right about now.
upvoted 0 times
Benton
8 months ago
C) Create an AWS owned key Provide the key's Amazon Resource Name (ARN) in the KMSMasterKeyld parameter during creation of the DynamoDB table.
upvoted 0 times
...
Dannie
9 months ago
B) Create an AWS Key Management Service (AWS KMS) AWS managed key Provide the key's Amazon Resource Name (ARN) in the KMSMasterKeyld parameter during creation of the DynamoDB table
upvoted 0 times
...
Raina
9 months ago
A) Create an AWS Key Management Service (AWS KMS) customer managed key. Provide the key's Amazon Resource Name (ARN) in the KMSMasterKeyld parameter during creation of the DynamoDB table
upvoted 0 times
...
...
Vallie
9 months ago
I think the developer should choose option A and create a customer managed key for server-side encryption.
upvoted 0 times
...
Phuong
9 months ago
I'm not so sure about that. Isn't it better to use a customer managed key from AWS KMS? That way, you have more control over the encryption.
upvoted 0 times
...
Belen
9 months ago
Option B is the correct answer. The developer should use an AWS managed key from AWS KMS to encrypt the DynamoDB table.
upvoted 0 times
Lura
8 months ago
Option B is the correct answer. The developer should use an AWS managed key from AWS KMS to encrypt the DynamoDB table.
upvoted 0 times
...
Georgiann
9 months ago
B) Create an AWS Key Management Service (AWS KMS) AWS managed key Provide the key's Amazon Resource Name (ARN) in the KMSMasterKeyld parameter during creation of the DynamoDB table
upvoted 0 times
...
...

Save Cancel
az-700  pass4success  az-104  200-301  200-201  cissp  350-401  350-201  350-501  350-601  350-801  350-901  az-720  az-305  pl-300  

Warning: Cannot modify header information - headers already sent by (output started at /pass.php:70) in /pass.php on line 77