Master AWS Certified Developer – Associate (DVA-C02) Exam/

...

Security II

Review assessment questions and explanations against all options to equip yourself with the necessary understanding to confidently tackle the AWS Certified Developer – Associate (DVA-C02) exam questions.

We'll cover the following...

Question 27
Question 28
Question 29
Question 30
Question 31
Question 32

Question 27

A developer is building a serverless web application in which AWS Lambda functions need to securely access data from an Amazon S3 bucket. Which is the most secure and recommended approach for the Lambda function to obtain the necessary permissions without hardcoding credentials?

A. Assign an IAM role with appropriate S3 permissions to the Lambda function.

B. Create an IAM user with S3 access permissions and hardcode its credentials in the Lambda function code.

C. Store AWS access and secret keys directly within the Lambda function’s environment variables.

D. Generate temporary credentials using AWS Security Token Service (STS) on a local machine and then upload them to the Lambda function.

Learn AWS CLI—From Zero to Hero

Applying Multilayer API Security Using Cognito and WAF

Managing Users with Amazon Cognito User Pool and Identity Pool

Understanding Cloud Computing Essentials— From Zero to Hero

Creating an Image Pipeline with EC2 Image Builder

Deploying Web Applications Using Elastic Beanstalk

Deploy Elastic Container Registry Image with Elastic Beanstalk

Getting Started with Amazon ECS

Create an EKS Cluster and Deploy an Application

Understanding AWS Storage Options—From Zero to Hero

Managing Instance Volumes Using EBS

Managing Storage Lifecycle using Amazon S3 Lifecycle Policies

Processing Amazon S3 Events Using AWS Lambda

Managing Data Access with Amazon S3 Access Points

Implement Advanced DynamoDB Features in Social Media Application

Understanding AWS Database Options—From Zero to Hero

Getting Started with DynamoDB Accelerator (DAX)

Improving Database Performance with Amazon ElastiCache for Redis

Building Custom AWS Lambda Runtimes

Build a Fanout Serverless Architecture using SNS, SQS, and Lambda

Securing APIs and Creating Usage Plans on AWS API Gateway

Decoupling Serverless Applications with Amazon EventBridge

Dynamically Process SQS Messages Using Step Functions

Step Functions Application Patterns for Lambda Orchestration

Mastering Service Integration Patterns with AWS Step Functions

Building a CI/CD Pipeline with AWS CodePipeline

Building a CI/CD Pipeline in AWS Using Terraform

Deploying a CI/CD Pipeline on EKS Using Terraform

Creating an Amazon ECS Service Using a Blue/Green Deployment

Getting Started with Virtual Private Cloud (VPC) in AWS

Controlling VPC Traffic Using Network ACLs

Managing Peer Connections between Amazon Virtual Private Clouds

Connecting Multiple VPCs Using Transit Gateway

Configuring a Static Website with S3 and CloudFront

Managing Application Traffic Using Elastic Load Balancers

Understanding Auto Scaling Group (ASG) in AWS

Attach an Application Load Balancer to EC2 Auto Scaling Group

Getting Started with AWS Key Management Service (KMS)

Encrypting S3 Buckets and EBS Volumes Using KMS

Managing Aurora DB Credentials and API Keys Using Secrets Manager

Getting Started with AWS Systems Manager Parameter Store

Monitoring EC2 Instances Using AWS CloudWatch

Debugging Microservice-based Applications using AWS X-Ray

Analyzing S3 Data and CloudTrail Logs Using Amazon Athena

Create a Data Lake with Lake Formation and Analyze It with Athena

Building a Logs Processing Pipeline with Amazon Kinesis

Using Amazon OpenSearch Service for Data Ingestion

Practice Exam

Security II

Question 27

Question 28