AWS Certified Developer – Associate — Question 106

A developer is creating an Amazon DynamoDB table. The entire table must be encrypted at rest.

Which solution will meet this requirement MOST cost-effectively?

Answer options

• A. Create the DynamoDB table by using default encryption settings.
• B. Encrypt the data by using the DynamoDB Encryption Client.
• C. During creation of the DynamoDB table, configure encryption at rest with an AWS Key Management Service (AWS KMS) AWS managed key.
• D. During creation of the DynamoDB table, configure encryption at rest with an AWS Key Management Service (AWS KMS) customer managed key.

Correct answer: A

Explanation

The most cost-effective method is to use the default encryption settings when creating the DynamoDB table, as it incurs no additional charges. Options B, C, and D involve extra steps or the use of keys that may result in additional costs, making them less economical for full encryption at rest.