Free Amazon DVA-C02 Exam Questions

Question 1

A company has an Amazon S3 bucket that contains sensitive data. The data must be encrypted in transit and at rest. The company encrypts the data in the S3 bucket by using an AWS Key Management Service (AWS KMS) key. A developer needs to grant several other AWS accounts the permission to use the S3 GetObject operation to retrieve the data from the S3 bucket. How can the developer enforce that all requests to retrieve the data provide encryption in transit?

A : Define a resource-based policy on the S3 bucket to deny access when a request meets the condition “aws:SecureTransport”: “false”.

B : Define a resource-based policy on the S3 bucket to allow access when a request meets the condition “aws:SecureTransport”: “false”.

C : Define a role-based policy on the other accounts' roles to deny access when a request meets the condition of “aws:SecureTransport”: “false”.

D : Define a resource-based policy on the KMS key to deny access when a request meets the condition of “aws:SecureTransport”: “false”.

Answer: A

Question 2

A developer is using AWS Amplify Hosting to build and deploy an application. The developer is receiving anincreased number of bug reports from users. The developer wants to add end-to-end testing to the applicationto eliminate as many bugs as possible before the bugs reach production.Which solution should the developer implement to meet these requirements?

A : Run the amplify add test command in the Amplify CLI.

B : Create unit tests in the application. Deploy the unit tests by using the amplify push command in theAmplify CLI.

C : Add a test phase to the amplify.yml build settings for the application.

D : Add a test phase to the aws-exports.js file for the application.

Answer: C

Question 3

A developer is troubleshooting an application mat uses Amazon DynamoDB in the uswest-2 Region. Theapplication is deployed to an Amazon EC2 instance. The application requires read-only permissions to a tablethat is named Cars The EC2 instance has an attached IAM role that contains the following IAM policy.When the application tries to read from the Cars table, an Access Denied error occurs.How can the developer resolve this error?

A : Modify the IAM policy resource to be " arn aws dynamo* us-west-2 account-id table/* "

B : Modify the IAM policy to include the dynamodb * action

C : Create a trust policy that specifies the EC2 service principal. Associate the role with the policy.

D : Create a trust relationship between the role and dynamodb Amazonas com.

Answer: C

Question 4

A developer is building a serverless application by using AWS Serverless Application Model (AWS SAM) onmultiple AWS Lambda functions.When the application is deployed, the developer wants to shift 10% of the traffic to the new deployment ofthe application for the first 10 minutes after deployment. If there are no issues, all traffic must switch over tothe new version.Which change to the AWS SAM template will meet these requirements?

A : Set the Deployment Preference Type to Canary10Percent10Minutes. Set the AutoPublishAlias propertyto the Lambda alias.

B : Set the Deployment Preference Type to LinearlOPercentEvery10Minutes. Set AutoPubIishAIiasproperty to the Lambda alias.

C : Set the Deployment Preference Type to CanaryIOPercentIOMinutes. Set the PreTraffic and PostTrafficproperties to the Lambda alias.

D : Set the Deployment Preference Type to LinearlOPercentEveryIOMinutes. Set PreTraffic and PostTraffic properties to the Lambda alias.

Answer: A

Question 5

A company has a two-tier application that consists of a frontend application and an Amazon RDS for MySQLdatabase. The frontend application retrieves data from the database. The data consists of postal codes and theirassociated geographic coordinates. The application performs many more database reads than writes. Theapplication retrieves each postal code from the database thousands of times each day.A developer must improve the performance of the application to decrease latency.Which change should the developer make to the application to meet these requirements?

A : Modify the application to use a lazy loading caching strategy with a small TTL value.

B : Modify the application to use a write-behind caching strategy.

C : Modify the application to use a write-through caching strategy.

D : Modify the application to use a lazy loading caching strategy with a large TTL value.

Answer: D