AWS Certified Developer - Associate

Get started today

Ultimate access to all questions.

Quick Answer

Answer-first summary for fast verification

Answer: Use AWS Systems Manager Parameter Store with dynamic CloudFormation references.

The correct answer is C. AWS Systems Manager Parameter Store allows you to store sensitive data securely as secure string parameters, which are encrypted using an AWS KMS key. By using dynamic references in CloudFormation templates, you can securely retrieve these parameters during bootstrapping without exposing sensitive information in the templates themselves. This approach provides a secure and integrated solution for managing sensitive data in the AWS Cloud.

Author: LeetQuiz Editorial Team

Quick Answer

Answer-first summary for fast verification

Answer: Use AWS Systems Manager Parameter Store with dynamic CloudFormation references.

Author: LeetQuiz Editorial Team

Comments (0)

No comments yet.

In an AWS Cloud application using CloudFormation for Auto Scaling group bootstrapping, how should sensitive data in bootstrap scripts be managed securely?

Exam-Like

Last updated: December 17, 2025 at 14:04

Encrypt CloudFormation templates with AWS KMS.

14.3%

Download sensitive data from an Amazon S3 bucket during bootstrap.

14.3%

Use AWS Systems Manager Parameter Store with dynamic CloudFormation references.

71.4%

Retrieve sensitive data from Amazon EFS with enforced encryption.