Q40 — AWS SAA-C03 第3章

第 40/65 题 | ← 返回第3章

Q170.一家在线零售公司拥有超过 5000 万活跃客户,每天收到超过 25,000 个订单.公司收集客户的购买数据并将此数据存储在 Amazon S3 中.其他客户数据存储在 Amazon RDS 中.公司希望将所有数据提供给各个团队,以便团队可以执行分析.该解决方案必须提供管理细粒度数据权限的能力,并且必须最大限度地减少运营开销哪种解决方案可以满足这些要求?

正确答案: C. 使用 AWS Lake Formation 创建数据湖.创建到 Amazon RDS 的 AWS Glue JDBC 连接.在 Lake Formation 中注册 S3 存储桶.使用 Lake Formation 访问控制来限制访问

解析

To meet the requirement of making all customer data available to various teams for analytics, managing fine-grained permissions, and minimizing operational overhead for an online retail company with more than 50 million active customers and more than 25,000 orders per day, a solutions architect should create a data lake using AWS Lake Formation. An AWS Glue JDBC connection can be created to Amazon RDS, and the S3 bucket can be registered in Lake Formation. Access controls can then be applied to limit access. Therefore, option C is the correct answer.Option A suggests migrating the purchase data to write directly to Amazon RDS and using RDS access controls to limit access. This approach could work but would require significant changes to the application architecture and database schema.Option B suggests scheduling an AWS Lambda function to periodically copy data from Amazon RDS to Amazon S3, creating an AWS Glue crawler, and using Amazon Athena to query the data with S3 policies to limit access. This approach could work but requires more manual configuration and may not be as scalable or cost-effective as using a data lake solution.Option D suggests creating an Amazon Redshift cluster and scheduling an AWS Lambda function to periodically copy data from Amazon S3 and Amazon RDS to Amazon Redshift, using Amazon Redshift access controls to limit access. While this approach could work, it requires more manual configuration and may not be as cost-effective or scalable as using a data lake solution.Using AWS Lake Formation provides a serverless, fully managed, and scalable solution for building a data lake on Amazon S3 and integrating with other AWS services such as Amazon RDS. With Lake Formation, fine-grained access controls can be applied to data sets based on users, groups, attributes, and conditions. This approach provides a highly secure, robust, and cost-effective solution for managing large amounts of data while minimizing administrative overhead. 为了满足将所有客户数据提供给各个团队进行分析、管理细粒度权限和最小化运营开销的需求,解决方案架构师应该使用AWS lake Formation创建一个数据湖。该在线零售公司拥有超过5000万活跃客户和每天超过25,000个订单。可以创建到Amazon RDS的AWS Glue JDBC连接,并且可以在Lake Formation中注册S3桶。然后可以应用访问控制来限制访问。因此,选项C是正确答案。选项A建议将购买数据迁移到直接写入Amazon RDS,并使用RDS访问控制来限制访问。这种方法可以工作,但需要对应用程序体系结构和数据库模式进行重大更改。方案B建议调度AWS Lambda函数定期将数据从Amazon RDS复制到Amazon S3,创建AWS Glue爬虫,并使用Amazon Athena通过S3策略查询数据以限制访问。这种方法可以工作,但需要更多的手动配置,并且可能不像使用数据湖解决方案那样具有可伸缩性或成本效益。选项D建议创建一个Amazon Redshift集群,并调度AWS Lambda函数定期将数据从Amazon S3和Amazon RDS复制到Amazon Redshift,使用Amazon Redshift访问控制来限制访问。虽然这种方法可以工作,但它需要更多的手动配置,并且可能不像使用数据湖解决方案那样具有成本效益或可扩展性。使用AWS Lake Formation为在Amazon S3上构建数据湖并与Amazon RDS等其他AWS服务集成提供了无服务器、完全管理和可扩展的解决方案。通过Lake Formation,细粒度的访问控制可以应用于基于用户、组、属性和条件的数据集。这种方法为管理大量数据提供了一种高度安全、健壮且经济高效的解决方案,同时将管理开销降至最低。