Answer-first summary for fast verification
Answer: Enable encryption in transit using SSL/TLS for all connections to the DynamoDB table.
While encryption at rest (A) protects data when it is stored, it does not protect data during transit. Creating separate tables (B) is not necessary and a VPN gateway is not the most effective method for securing DynamoDB access. Using AWS Systems Manager (C) can be useful for managing EC2 instances, but it does not provide encryption for data in transit. The most effective approach (D) is to enable encryption in transit using SSL/TLS for all connections to the DynamoDB table. This ensures that the data is encrypted and protected during transit between the EC2 instances and the DynamoDB table.
Author: LeetQuiz Editorial Team
Ultimate access to all questions.
You are designing a system that requires secure access to an Amazon DynamoDB table from multiple EC2 instances. Which of the following approaches would be most effective in ensuring the confidentiality and integrity of data in transit?
A
Use a single DynamoDB table and enable encryption at rest.
B
Create separate DynamoDB tables for each EC2 instance and use a VPN gateway to connect them.
C
Use AWS Systems Manager to forward traffic over secure connections to the DynamoDB table.
D
Enable encryption in transit using SSL/TLS for all connections to the DynamoDB table.
No comments yet.