nerdexam
Amazon

DVA-C02 · Question #50

An application is using Amazon Cognito user pools and identity pools for secure access. A developer wants to integrate the user-specific file upload and download features in the application with Amazo

The correct answer is D. Use an IAM policy within the Amazon Cognito identity prefix to restrict users to use their own. This solution ensures that users can access only their own files in a secure manner. https://docs.aws.amazon.com/cognito/latest/developerguide/amazon-cognito-integrating-user- pools-with-identity-pools.html

Submitted by ngozi_ng· Mar 5, 2026Security

Question

An application is using Amazon Cognito user pools and identity pools for secure access. A developer wants to integrate the user-specific file upload and download features in the application with Amazon S3. The developer must ensure that the files are saved and retrieved in a secure manner and that users can access only their own files. The file sizes range from 3 KB to 300 MB. Which option will meet these requirements with the HIGHEST level of security?

Options

  • AUse S3 Event Notifications to validate the file upload and download requests and update the user
  • BSave the details of the uploaded files in a separate Amazon DynamoDB table. Filter the list of
  • CUse Amazon API Gateway and an AWS Lambda function to upload and download files. Validate
  • DUse an IAM policy within the Amazon Cognito identity prefix to restrict users to use their own

How the community answered

(22 responses)
  • A
    27% (6)
  • B
    14% (3)
  • C
    5% (1)
  • D
    55% (12)

Explanation

This solution ensures that users can access only their own files in a secure manner. https://docs.aws.amazon.com/cognito/latest/developerguide/amazon-cognito-integrating-user- pools-with-identity-pools.html

Community Discussion

No community discussion yet for this question.

Full DVA-C02 Practice