DBS-C01 · Question #257
DBS-C01 Question #257: Real Exam Question with Answer & Explanation
Sign in or unlock DBS-C01 to reveal the answer and full explanation for question #257. The question stem and answer options stay visible for context.
Question
A pharmaceutical company uses Amazon Quantum Ledger Database (Amazon QLDB) to store its clinical trial data records. The company has an application that runs as AWS Lambda functions. The application is hosted in the private subnet in a VPC. The application does not have internet access and needs to read some of the clinical data records. The company is concerned that traffic between the QLDB ledger and the VPC could leave the AWS network. The company needs to secure access to the QLDB ledger and allow the VPC traffic to have read-only access. Which security strategy should a database specialist implement to meet these requirements?
Options
- AMove the QLDB ledger into a private database subnet inside the VPC. Run the Lambda functions
- BCreate an AWS PrivateLink VPC endpoint for the QLDB ledger. Attach a VPC policy to the VPC
- CAdd a security group to the QLDB ledger to allow access from the private subnets inside the VPC
- DCreate a VPN connection to ensure pairing of the private subnet where the Lambda functions are
Unlock DBS-C01 to see the answer
You've previewed enough free DBS-C01 questions. Unlock DBS-C01 for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.