AWS Certified Developer – Associate — Question 73

A banking application processes thousands of transactions each second. Each transaction payload must have end-to-end encryption. The application encrypts each transaction locally by using the AWS Key Management Service (AWS KMS) GenerateDataKey operation. A developer is testing the application and receives a ThrottlingException error.

Which actions are best practices to resolve this error? (Choose two.)

Answer options

• A. Use the LocalCryptoMatenalsCache feature of the AWS Encryption SDK encryption library.
• B. Call the AWS KMS Encrypt operation directly to allow AWS KMS to encrypt the data.
• C. Create a case in the AWS Support Center to increase the quota for the account.
• D. Use Amazon Simple Queue Service (Amazon SQS) to queue the requests to AWS KMS.
• E. Switch to an AWS KMS custom key store.

Correct answer: A, C

Explanation

The correct answers are A and C. Option A is correct because using the LocalCryptoMaterialsCache can reduce the number of calls made to AWS KMS, thereby mitigating throttling issues. Option C is also valid as raising the quota through AWS Support can help accommodate the high volume of transactions. Options B, D, and E do not directly address the throttling issue or may complicate the architecture without resolving the immediate problem.