A developer is creating a new Amazon DynamoDB table and needs to ensure that all data is encrypted at rest. <br/><br/>What action must the developer take to enable encryption at rest for the DynamoDB table?

Answer options:

Enable encryption in the table settings during creation.

No action is required; DynamoDB encrypts all data at rest by default.

Use the DynamoDB Encryption Client in the application code.

Attach an IAM policy to the table enforcing the sse:Encrypt action.

How to approach this question

Know which AWS services have encryption enabled by default.

Full Answer

B.No action is required; DynamoDB encrypts all data at rest by default.✓ Correct

Amazon DynamoDB encrypts all user data at rest by default. You cannot turn it off. You can only choose which KMS key is used (AWS owned key, AWS managed key, or customer managed key).

Common mistakes

Thinking encryption must be manually enabled for DynamoDB.

Question 19 All questions Question 21

Practice the full AWS SAA-C03 Practice Exam 6

65 questions · hints · full answers · grading

More questions from this exam

Q01A company has multiple AWS accounts in an AWS Organizations organization. The security team wants...Medium Q02A company has two AWS accounts: Account A for development and Account B for production. Developer...Medium Q03A mobile application needs to authenticate users using their social media accounts (Facebook, Goo...Easy Q04A company is running an application on Amazon EC2 instances. The application needs to connect to ...Medium Q05A company has 50 AWS accounts managed by AWS Organizations. The IT team wants to implement a cent...Easy

View all 65 questions →