Which strategy allows the appropriate level of access control and requires the LEAST amount of management work?

Posted by: Pdfprep Category: BDS-C00 Tags: , ,

A solutions architect for a logistics organization ships packages from thousands of suppliers to end customers. The architect is building a platform where suppliers can view the status of one or more of their shipments. Each supplier can have multiple roles that will

only allow access to specific fields in the resulting information.

Which strategy allows the appropriate level of access control and requires the LEAST amount of management work?
A . Send the tracking data to Amazon Kinesis Streams. Use AWS Lambda to store the data in an Amazon DynamoDB Table. Generate temporary AWS credentials for the supplier’s users with AWS STS, specifying fine-grained security policies to limit access only to their application data.
B . Send the tracking data to Amazon Kinesis Firehouse. Use Amazon S3 notifications and AWS Lambda to prepare files in Amazon S3 with appropriate data for each supplier’s roles. Generate temporary AWS credentials for the suppliers’ users with AWS ST
C . Limit access to the appropriate files through security policies.
D . Send the tracking data to Amazon Kinesis Streams. Use Amazon EMR with Spark Streaming to store the data in HBase. Create one table per supplier. Use HBase Kerberos integration with the suppliers’ users. Use HBase ACL-based security to limit access to the roles to their specific table and columns.
E . Send the tracking data to Amazon Kinesis Firehose. Store the data in an Amazon Redshift cluster. Create views for the supplier’s users and roles. Allow suppliers access to the Amazon Redshift cluster using a user limited to the application view.

Answer: A

Leave a Reply

Your email address will not be published.