DVA-C02 Domain 2: Security

A company needs to restrict DynamoDB access with fine-grained IAM. Which option meets the requirement with the LEAST implementation effort? restrict DynamoDB access with fine-grained IAM.

Multiple choice — select one answer

Answer choices

  1. a. AWS Signature Version 4 (SigV4)
  2. b. IAM instance profiles
  3. c. AWS KMS with Lambda
  4. d. IAM policies on table/index ARNs

Architectural breakdown & explanation

Resource-level IAM controls DynamoDB access.

Correct answer(s): d. IAM policies on table/index ARNs

Exam domain: Domain 2: Security (26% weight on the official guide).

Official documentation & study links

Practice this certification

This page is one question from the AWS Certified Developer – Associate bank. Run a full timed practice exam with domain-weighted random questions in your browser.