AWS Certified Cloud Practitioner (CLF-C02) — Question 192

Which AWS service can a company use to securely store and encrypt passwords for a database?

Answer options

• A. AWS Shield
• B. AWS Secrets Manager
• C. AWS Identity and Access Management (IAM)
• D. Amazon Cognito

Correct answer: B

Explanation

AWS Secrets Manager is specifically designed to securely manage and encrypt sensitive information like database credentials. The other options do not provide this functionality; AWS Shield is focused on DDoS protection, IAM handles permissions and access control, while Amazon Cognito is used for user authentication and management.