Deployment III
Explore deployment techniques that ensure secure, scalable AWS applications. Understand EBS volume encryption with CloudFormation, choose durable storage solutions for static assets, manage Lambda dependencies efficiently, and apply risk-minimizing API Gateway deployment strategies with environment-specific Lambda aliases.
We'll cover the following...
Question 50
A developer needs to ensure that all Amazon EC2 instances provisioned during automated deployments use encrypted Amazon EBS volumes for data storage in accordance with company security policies. The deployment process launches new environments using AWS CloudFormation templates.
Which approach should the developer take to enforce EBS encryption as part of the deployment process?
A. Add the Encrypted: true property to all EBS volume resources in the CloudFormation template.
B. Use AWS KMS to create a customer-managed key, but do not specify encryption in the CloudFormation template.
C. Developer runs a custom script on each EC2 instance after launch to encrypt volumes.
D. Use instance store ...