Answer-first summary for fast verification
Answer: Utilize AWS Secrets Manager to store and retrieve API credentials dynamically for API calls.
Option A is the correct answer because AWS Secrets Manager is designed specifically for storing and managing sensitive information such as API keys, passwords, and database credentials. It allows for secure and efficient retrieval of secrets at runtime without impacting application performance. Moreover, Secrets Manager provides automated rotation, secure access controls, and audit capabilities to enhance security. Other options (B, C, and D) do not offer the same level of security and ease of management. Storing credentials in local code or using S3 or DynamoDB for sensitive information adds unnecessary complexity and potential security risks.
Author: LeetQuiz Editorial Team
Ultimate access to all questions.
How can a company securely manage an API key for sharing information with a third-party HTTP API endpoint without impacting application performance?
A
Utilize AWS Secrets Manager to store and retrieve API credentials dynamically for API calls.
B
Maintain API credentials in a local variable within the codebase, secured in a Git repository, for runtime API calls.
C
Place API credentials in a private S3 bucket with IAM policy restrictions and access them at runtime via the AWS SDK for API calls.
D
Keep API credentials in a DynamoDB table with resource-based policies and retrieve them at runtime using the AWS SDK for API calls.
No comments yet.