Amazon Exam DVA-C02 Topic 7 Question 32 Discussion

Actual exam question for Amazon's DVA-C02 exam

Question #: 32
Topic #: 7

An application is using Amazon Cognito user pools and identity pools for secure access. A developer wants to integrate the user-specific file upload and download features in the application with Amazon S3. The developer must ensure that the files are saved and retrieved in a secure manner and that users can access only their own files. The file sizes range from 3 KB to 300 MB.

Which option will meet these requirements with the HIGHEST level of security?

AUse S3 Event Notifications to validate the file upload and download requests and update the user interface (UI).

BSave the details of the uploaded files in a separate Amazon DynamoDB table. Filter the list of files in the user interface (UI) by comparing the current user ID with the user ID associated with the file in the table.

CUse Amazon API Gateway and an AWS Lambda function to upload and download files. Validate each request in the Lambda function before performing the requested operation.

DUse an IAM policy within the Amazon Cognito identity prefix to restrict users to use their own folders in Amazon S3.

Show Suggested Answer

Suggested Answer: B

Global Secondary Index (GSI):GSIs enable alternative query patterns on a DynamoDB table by using different partition and sort keys.

Addressing Query Bottleneck:By making the slow-query attribute the GSI's partition key, you optimize queries on that attribute.

Scalability:GSIs automatically scale to handle increasing data volumes.

Amazon DynamoDB Global Secondary Indexes:https://docs.aws.amazon.com/amazondynamodb/latest/developerguide/GSI.html

by Devon at Jul 15, 2024, 05:52 AM

Limited Time Offer

25%

Off

Get Premium DVA-C02 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel

Caitlin

2 days ago

I'm not sure, but option C also sounds secure with API Gateway and Lambda function validation.

upvoted 0 times

...

Murray

3 days ago

I agree with Rodrigo. Option D seems to provide the highest level of security by restricting access to user-specific folders.

upvoted 0 times

...

Rodrigo

4 days ago

I think option D is the best choice because it restricts users to their own folders in S3.

upvoted 0 times

...