AWS Certified Developer Associate DVA-C02 Practice Question
An application running on an EC2 instance needs to securely interact with various cloud resources. To follow best security practices, you've assigned a particular role to the instance to facilitate this. Which method should your application use to authenticate service requests seamlessly?
Implement a custom script to fetch temporary security tokens using GetSessionToken for service request authorization.
Rely on the cloud SDK's default behavior to retrieve temporary security credentials provided through the instance's metadata.
Embed a fixed set of security credentials within the application's source code to authenticate service requests.
Generate and use a dedicated set of long-term security credentials, storing them in the instance storage for service requests.
When an EC2 instance is launched with an assigned role, temporary security credentials are provided automatically through the Instance Metadata Service (IMDS). The application can then make secure requests to other services without explicit credential management. Manually invoking GetSessionToken is not necessary since automatic credential fetching is already available. Storing access and secret keys is insecure, and embedding them in app code is not advisable as it poses significant security risks.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What is the Instance Metadata Service (IMDS)?
Open an interactive chat with Bash
What are temporary security credentials and why are they important?
Open an interactive chat with Bash
What are the risks associated with embedding security credentials in application code?
Open an interactive chat with Bash
AWS Certified Developer Associate DVA-C02
Security
Your Score:
Report Issue
Bash, the Crucial Exams Chat Bot
AI Bot
Loading...
Loading...
Loading...
IT & Cybersecurity Package Join Premium for Full Access