Amazon Web Services edusum aws Certified Associate Changed Dva-c02 Questions by Ishaaq q65 vce pdf

Page: 22 / 31

Exam Name:	AWS Certified Developer - Associate
Exam Code:	DVA-C02 Dumps
Vendor:	Amazon Web Services	Certification:	AWS Certified Associate
Questions:	425 Q&A's	Shared By:	ishaaq

Question 88

A developer is planning to migrate on-premises company data to Amazon S3. The data must be encrypted, and the encryption Keys must support automate annual rotation. The company must use AWS Key Management Service (AWS KMS) to encrypt the data.

When type of keys should the developer use to meet these requirements?

Options:

Amazon S3 managed keys

Symmetric customer managed keys with key material that is generated by AWS

Asymmetric customer managed keys with key material that generated by AWS

Symmetric customer managed keys with imported key material

Discussion

Question 89

A developer is designing an event-driven architecture. An AWS Lambda function that processes data needs to push processed data to a subset of four consumer Lambda functions. The data must be routed based on the value of one field in the data.

Which solution will meet these requirements with the LEAST operational overhead?

Options:

Create an Amazon Simple Queue Service {Amazon SQS) queue and even! source mapping for each consumer Lambda function. Add message routing logic to the data-processing Lambda function.

Create an Amazon Simple Notification Service (Amazon SNS) topic. Subscribe the four consumer Lambda functions to the topic. Add message filtering logic to each consumer Lambda function. Subscribe the data-processing Lambda function to the SNS topic.

Create a separate Amazon Simple Notification Service (Amazon SNS) topic and subscription for each consumer Lambda function. Add message routing logic to the data-processing Lambda function to publish to the appropriate topic.

Create a single Amazon Simple Notification Service {Amazon SNS) topic. Subscribe the four consumer Lambda functions to the topic. Add SNS subscription filter policies to each subscription. Configure the data-processing Lambda function to publish to the topic.

Discussion

Question 90

A company runs a payment application on Amazon EC2 instances behind an Application Load Balance The EC2 instances run in an Auto Scaling group across multiple Availability Zones The application needs to retrieve application secrets during the application startup and export the secrets as environment variables These secrets must be encrypted at rest and need to be rotated every month.

Which solution will meet these requirements with the LEAST development effort?

Options:

Save the secrets in a text file and store the text file in Amazon S3 Provision a customer managed key Use the key for secret encryption in Amazon S3 Read the contents of the text file and read the export as environment variables Configure S3 Object Lambda to rotate the text file every month

Save the secrets as strings in AWS Systems Manager Parameter Store and use the default AWS Key Management Service (AWS KMS) key Configure an Amazon EC2 user data script to retrieve the secrets during the startup and export as environment variables Configure an AWS Lambda function to rotate the secrets in Parameter Store every month.

Save the secrets as base64 encoded environment variables in the application properties. Retrieve the secrets during the application startup. Reference the secrets in the application code. Write a script to rotate the secrets saved as environment variables.

Store the secrets in AWS Secrets Manager Provision a new customer master key Use the key to encrypt the secrets Enable automatic rotation Configure an Amazon EC2 user data script to programmatically retrieve the secrets during the startup and export as environment variables

Discussion

Question 91

An AWS Lambda function requires read access to an Amazon S3 bucket and requires read/write access to an Amazon DynamoDB table The correct 1AM policy already exists

What is the MOST secure way to grant the Lambda function access to the S3 bucket and the DynamoDB table?

Options:

Attach the existing 1AM policy to the Lambda function.

Create an 1AM role for the Lambda function Attach the existing 1AM policy to the role Attach the role to the Lambda function

Create an 1AM user with programmatic access Attach the existing 1AM policy to the user. Add the user access key ID and secret access key as environment variables in the Lambda function.

Add the AWS account root user access key ID and secret access key as encrypted environment variables in the Lambda function

Discussion

Addison

Want to tell everybody through this platform that I passed my exam with excellent score. All credit goes to Cramkey Exam Dumps.

Libby Dec 25, 2025

That's good to know. I might check it out for my next IT certification exam. Thanks for the info.

Vienna

I highly recommend them. They are offering exact questions that we need to prepare our exam.

Jensen Dec 17, 2025

That's great. I think I'll give Cramkey a try next time I take a certification exam. Thanks for the recommendation!

Ari

Can anyone explain what are these exam dumps and how are they?

Ocean Dec 20, 2025

They're exam preparation materials that are designed to help you prepare for various certification exams. They provide you with up-to-date and accurate information to help you pass your exams.

Hendrix

Great website with Great Exam Dumps. Just passed my exam today.

Luka Dec 17, 2025

Absolutely. Cramkey Dumps only provides the latest and most updated exam questions and answers.

Josie

I just passed my certification exam using their dumps and I must say, I was thoroughly impressed.

Fatimah Dec 18, 2025

You’re right. The dumps were authentic and covered all the important topics. I felt confident going into the exam and it paid off.

Page: 22 / 31

Title

Questions

Posted