The goal is to enhance the responsiveness of a popular, unauthenticated, read-heavy API where the underlying data changes infrequently (daily). Enabling API caching in API Gateway is the most effective solution. When caching is enabled, API Gateway stores responses from the backend Lambda function for a specified Time-To-Live (TTL). Subsequent identical requests are served directly from the cache, bypassing the Lambda invocation. This significantly reduces latency and improves responsiveness for end-users, while also lowering the load on the backend service.

B. Configure API Gateway to use an interface VPC endpoint.

This provides private access to an API from within a VPC. The scenario specifies the service is offered over the public internet, making this option irrelevant for external users.

C. Enable cross-origin resource sharing (CORS) for the APIs.

CORS is a browser security mechanism that allows or denies cross-origin requests. It is a functional requirement for certain clients, not a performance enhancement to reduce latency.

D. Configure usage plans and API keys in API Gateway.

Usage plans and API keys are for managing and authenticating access, including throttling and quotas. The API is unauthenticated, and these features are for control, not for improving general responsiveness.

1. Amazon API Gateway Developer Guide: Enabling API caching to enhance responsiveness. This document states

"You can enable API caching in Amazon API Gateway to cache your endpoint's responses. With caching

you can reduce the number of calls made to your endpoint and also improve the latency of requests to your API."

2. Amazon API Gateway Developer Guide: Create and attach an interface VPC endpoint for API Gateway. This guide explains

"To provide your private API clients in a VPC access to your API without using public IPs or exposing traffic to the public internet

you can use an interface VPC endpoint." This confirms its use for private

not public

access.

3. Amazon API Gateway Developer Guide: Creating and using usage plans with API keys. This section details that "After you create

test

and deploy your APIs

you can use API Gateway usage plans to make them available as a product offering for your customers." This highlights its purpose for access control and monetization

not latency reduction.

4. Amazon API Gateway Developer Guide: Enabling CORS for a REST API resource. This page clarifies

"Cross-origin resource sharing (CORS) is a browser security feature that restricts cross-origin HTTP requests that are initiated from scripts running in the browser." This confirms CORS is a security feature

not a performance tool.