Q: 11
A company wants to share information with a third party. The third party has an HTTP API endpoint
that the company can use to share the information. The company has the required API key to access
the HTTP API.
The company needs a way to manage the API key by using code. The integration of the API key with
the application code cannot affect application performance.
Which solution will meet these requirements MOST securely?
Options
Discussion
A is the best choice, Secrets Manager is built for secure secret storage and you can grab the API key at runtime with minimal perf impact. S3 or DynamoDB aren't meant for secrets. Pretty sure official guide and AWS labs cover this.
Be respectful. No spam.
