Q84 — AWS DVA-C02 Ch.2
Question 84 of 100 | ← Chapter 2
A developer is creating an Amazon DynamoDB table. The entire table must be encrypted at rest. Which solution meets this requirement in the most cost-effective manner?
- A. Create the DynamoDB table using the default encryption settings. ✓
- B. Encrypt data using the DynamoDB Encryption Client.
- C. Configure server-side encryption with an AWS managed key from AWS Key Management Service (AWS KMS) during DynamoDB table creation.
- D. Configure server-side encryption with a customer-managed key from AWS Key Management Service (AWS KMS) during DynamoDB table creation.
Correct Answer: A. Create the DynamoDB table using the default encryption settings.
Explanation
When creating an Amazon DynamoDB table, using the default encryption settings is typically the most cost-effective solution because it requires no additional configuration or management overhead. Option B (DynamoDB Encryption Client) adds complexity and potential cost. Option C (AWS managed KMS key) may incur minimal charges and require extra configuration. Option D (customer-managed KMS key) involves higher management effort and potentially greater cost. Thus, option A best satisfies the requirement economically and effectively.