A company is building a serverless application. The application uses an API key to authenticate with a third-party application. The company wants to store the external API key as a part of an AWS Lambda configuration. The company needs to have full control over the AWS Key Management Service (AWS KMS) keys that will encrypt the API key and should be visible only to authorized entities.
Which solution will meet these requirements?

A. Store the API key in AWS Systems Manager Parameter Store as a string parameter. Use the default AWS KMS key that AWS provides to encrypt the API key.

B. Store the API key in AWS Lambda environment variables. Create an AWS KMS customer managed key to encrypt the API key.

C. Store the API key in the code repository. Use an AWS managed key to encrypt the code repository.

D. Store the API key as an Amazon DynamoDB table record. Use an AWS managed key to encrypt the API key.








 

Suggested Answer: B

Community Answer: B




This question is in DVA-C02 AWS Certified Developer – Associate Exam
For getting AWS Certified Developer – Associate Certificate


Disclaimers:
The website is not related to, affiliated with, endorsed or authorized by Amazon.
Trademarks, certification & product names are used for reference only and belong to Amazon.
The website does not contain actual questions and answers from Amazon's Certification Exam.