A company has developed a platform which consists of multiple components.
First is the ability for suppliers to supply data to the platform.
And another application component which allows them to perform analysis on that data.
The suppliers authenticate using SAML federation.
Which of the following will help ensure a complete solution and also ensure a secure way for suppliers to have access to only their set of data?
Click on the arrows to vote for the correct answer
A. B. A. D. E. F.Answer - A.
The AWS Documentation mentions the following.
The AWS Security Token Service (STS) is a web service that enables you to request temporary, limited-privilege credentials for AWS Identity and Access Management (IAM) users or for users that you authenticate (federated users)
This guide provides descriptions of the STS API.
Option B is incorrect using AWS Access is not the right approach to giving access.
Options C and D are incorrect since DynamoDB streams is not used to ingest data from external sources.
For more information on STS and Streams Adaptor for AWS Kinesis , please refer to the below URL.
https://docs.aws.amazon.com/STS/latest/APIReference/Welcome.html https://docs.aws.amazon.com/amazondynamodb/latest/developerguide/Streams.KCLAdapter.Walkthrough.htmlThe requirement is to ensure that suppliers can securely access only their set of data. The solution must also be complete.
Option A suggests ingesting data using Kinesis streams and then moving the data to DynamoDB. However, it does not address the requirement for secure access by suppliers.
Option B suggests using STS to provide temporary access credentials. This option can provide secure access to the suppliers' data by providing temporary credentials with limited access permissions. This option can be a part of a complete solution, but it is not the complete solution.
Option C is a repeat of option A.
Option D suggests providing access using AWS Access Keys. This option does not provide secure access to the suppliers' data, as the access keys can be shared or stolen.
Option E suggests ingesting data using DynamoDB streams and then streaming the data into DynamoDB tables. It also suggests using STS to provide temporary access credentials for secure access. This option provides a complete solution, and it ensures secure access for suppliers to only their set of data.
Option F is a repeat of option E.
Therefore, the correct answer is E: Ingest the data using DynamoDB streams. Stream the data into DynamoDB tables. Ensure that access is given via STS using temporary access credentials.