AWS Certified Alexa Skill Builder – Specialty — Question 12

According to Amazon Alexa best practices, how should an Alexa Skill Builder prevent unintentional requests against a skill's backend when using AWS Lambda?

Answer options

• A. Ensure that the session ID provided by the request to Lambda is not already in use.
• B. Rotate the Lambda ARN regularly to prevent others from using the service.
• C. Retrieve the Application ID property from the request JSON and validate it against the Lambda environment variables.
• D. Provide the Lambda trigger with the Application ID so that it validates on the ask trigger.

Correct answer: C

Explanation

The correct approach is to retrieve the Application ID from the request JSON and check it against the Lambda environment variables, as this ensures that only authorized requests are processed. Option A focuses on session IDs, which do not directly prevent backend misuse. Option B is not practical as it would complicate service maintenance, and option D does not address validation against the environment variables.