A user has created an application which will be hosted on EC2. The application makes API calls to DynamoDB to fetch certain data. The application running on this instance is using the SDK for making these calls to DynamoDB. Which of the below mentioned statements is true with respect to the best practice for security in this scenario?
A) The user should create an IAM user with permissions to access DynamoDB and use its creden-tials within the application for connecting to DynamoDB
B) The user should create an IAM user with DynamoDB and EC2 permissions. Attach the user with the application so that it does not use the root account credentials
C) The user should attach an IAM role to the EC2 instance with necessary permissions for making API calls to DynamoDB.
D) The user should create an IAM role with EC2 permissions to deploy the application
Correct Answer:
Verified
Q273: You are setting up security groups for
Q274: The IAM entity "AWS Account" is similar
Q275: A root AWS account owner has created
Q276: AWS KMS (Key Management Service) uses symmetric
Q277: If an IAM policy has multiple conditions,
Q279: Which of the following Identity and Access
Q280: In Amazon VPC, the _ encryption function
Q281: The InfoSec team has asked the SysOps
Q282: A SysOps Administrator has received a request
Q283: An AWS CloudFormation template creates an Amazon
Unlock this Answer For Free Now!
View this answer and more for free by performing one of the following actions
Scan the QR code to install the App and get 2 free unlocks
Unlock quizzes for free by uploading documents