A developer wants to process personally identifiable information by using a public HTTP API that is hosted on Amazon EC2. The developer also wants to protect the data as securely as possible in transit.
Which combination of steps will meet these requirements? (Choose two.)

A. Use the Amazon CloudFront field-level encryption feature for the incoming data.

B. Apply the principle of least privilege for access to the AWS Key Management Service (AWS KMS) service page.

C. Frequently rotate any API access keys for the HTTP API.

D. Turn on multi-factor authentication (MFA) for all IAM users.

E. Implement TLS for the HTTP API.






 

Suggested Answer: BE

Community Answer: AE




This question is in DVA-C01 AWS Certified Developer – Associate Exam
For getting AWS Certified Developer – Associate Certificate


Disclaimers:
The website is not related to, affiliated with, endorsed or authorized by Amazon.
Trademarks, certification & product names are used for reference only and belong to Amazon.
The website does not contain actual questions and answers from Amazon's Certification Exam.