AIP-C01 · Question #77
AIP-C01 Question #77: Real Exam Question with Answer & Explanation
Sign in or unlock AIP-C01 to reveal the answer and full explanation for question #77. The question stem and answer options stay visible for context.
Question
A company uses AWS Lake Formation to set up a data lake that contains databases and tables for multiple business units across multiple AWS Regions. The company wants to use a foundation model (FM) through Amazon Bedrock to perform fraud detection. The FM must ingest sensitive financial data from the data lake. The data includes some customer personally identifiable information (PII). The company must design an access control solution that prevents PII from appearing in a production environment. The FM must access only authorized data subsets that have PII redacted from specific data columns. The company must capture audit trails for all data access. Which solution will meet these requirements?
Options
- ACreate a separate dataset in a separate Amazon S3 bucket for each business unit and Region
- BConfigure the FM to authenticate by using AWS Identity and Access Management roles and Lake
- CUse direct IAM principal grants on specific databases and tables in Lake Formation. Create a
- DConfigure the FM to request temporary credentials from AWS Security Token Service. Access the
Unlock AIP-C01 to see the answer
You've previewed enough free AIP-C01 questions. Unlock AIP-C01 for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.