Amazon AWS Certified Developer - Associate DVA-C01
Prev

There are 237 results

Next
#51 (Accuracy: 92% / 7 votes)
A company stores documents in Amazon S3 with default settings. A new regulation requires the company to encrypt the documents at rest, rotate the encryption keys annually, and keep a record of when the encryption keys were rotated. The company does not want to manage the encryption keys outside of AWS.
Which solution will meet these requirements?
  • A. Use server-side encryption with Amazon S3 managed encryption keys (SSE-S3).
  • B. Use server-side encryption with AWS KMS managed encryption keys (SSE-KMS).
  • C. Use server-side encryption with customer-provided encryption keys (SSE-C).
  • D. Use client-side encryption before sending the data to Amazon S3.
#52 (Accuracy: 100% / 7 votes)
A developer is testing a Docker-based application that uses the AWS SDK to interact with Amazon DynamoDB. In the local development environment, the application has used IAM access keys. The application is now ready for deployment onto an ECS cluster.
How should the application authenticate with AWS services in production?
  • A. Configure an ECS task IAM role for the application to use.
  • B. Refactor the application to call AWS STS AssumeRole based on an instance role.
  • C. Configure AWS access key/secret access key environment variables with new credentials.
  • D. Configure the credentials file with a new access key/secret access key.
#53 (Accuracy: 100% / 6 votes)
A developer is building a serverless application that is based on AWS Lambda. The developer initializes the AWS software development kit (SDK) outside of the
Lambda handler function.

What is the PRIMARY benefit of this action?
  • A. Improves legibility and stylistic convention
  • B. Takes advantage of runtime environment reuse
  • C. Provides better error handling
  • D. Creates a new SDK instance for each invocation
#54 (Accuracy: 100% / 4 votes)
An application needs to encrypt data that is written to Amazon S3 where the keys are managed in an on-premises data center, and the encryption is handled by
S3.

Which type of encryption should be used?
  • A. Use server-side encryption with Amazon S3-managed keys.
  • B. Use server-side encryption with AWS KMS-managed keys.
  • C. Use client-side encryption with AWS KMS-managed keys.
  • D. Use server-side encryption with customer-provided keys.
#55 (Accuracy: 100% / 4 votes)
A static website is hosted in an Amazon S3 bucket. Several HTML pages on the site use JavaScript to download images from another Amazon S3 bucket. These images are not displayed when users browse the site.
What is the possible cause for the issue?
  • A. The referenced Amazon S3 bucket is in another region.
  • B. The images must be stored in the same Amazon S3 bucket.
  • C. Port 80 must be opened on the security group in which the Amazon S3 bucket is located.
  • D. Cross Origin Resource Sharing must be enabled on the Amazon S3 bucket.
#56 (Accuracy: 100% / 4 votes)
A developer has created a new IAM user that has the s3:PutObject permission to write to a specific Amazon S3 bucket. The S3 bucket uses server-side encryption with AWS KMS managed keys (SSE-KMS) as the default encryption. When an application uses the access key and secret key of the IAM user to call the PutObject API operation, the application receives an access denied error.
What should the developer do to resolve this error?
  • A. Update the policy of the IAM user to allow the s3:EncryptionConfiguration action.
  • B. Update the bucket policy of the S3 bucket to allow the IAM user to upload objects.
  • C. Update the policy of the IAM user to allow the kms:GenerateDataKey action.
  • D. Update the ACL of the S3 bucket to allow the IAM user to upload objects.
#57 (Accuracy: 100% / 3 votes)
A developer has written code for an application and wants to share it with other developers on the team to receive feedback. The shared application code needs to be stored long-term with multiple versions and batch change tracking.
Which AWS service should the developer use?
  • A. AWS CodeBuild
  • B. Amazon S3
  • C. AWS CodeCommit
  • D. AWS Cloud9
#58 (Accuracy: 100% / 4 votes)
A developer created a Lambda function for a web application backend. When testing the Lambda function from the AWS Lambda console, the developer can see that the function is being run, but there is no log data being generated in Amazon CloudWatch Logs, even after several minutes.
What could cause this situation?
  • A. The Lambda function does not have any explicit log statements for the log data to send it to CloudWatch Logs.
  • B. The Lambda function is missing CloudWatch Logs as a source trigger to send log data.
  • C. The execution role for the Lambda function is missing permissions to write log data to the CloudWatch Logs.
  • D. The Lambda function is missing a target CloudWatch Log group.
#59 (Accuracy: 100% / 8 votes)
An application is using Amazon DynamoDB as its data store, and should be able to read 100 items per second as strongly consistent reads. Each item is 5 KB in size.
To what value should the table's provisioned read throughput be set?
  • A. 50 read capacity units
  • B. 100 read capacity units
  • C. 200 read capacity units
  • D. 500 read capacity units
#60 (Accuracy: 92% / 12 votes)
A company has a website that displays a daily newsletter. When a user visits the website, an AWS Lambda function processes the browser's request and queries the company's on-premises database to obtain the current newsletter. The newsletters are stored in English. The Lambda function uses the Amazon Translate
TranslateText API operation to translate the newsletters, and the translation is displayed to the user.

Due to an increase in popularity, the website's response time has slowed.
The database is overloaded. The company cannot change the database and needs a solution that improves the response time of the Lambda function.
Which solution meets these requirements?
  • A. Change to asynchronous Lambda function invocation.
  • B. Cache the translated newsletters in the Lambda /tmp directory.
  • C. Enable TranslateText API caching.
  • D. Change the Lambda function to use parallel processing.