AWS Certified Developer Associate DVA-C02 Practice Question
An application being deployed requires configuration with access keys and database credentials. What is the BEST practice for handling these types of secrets for an application on a managed deployment platform?
Embed encrypted access information in the codebase and use code to decode upon application start
Use a dedicated service for secret management that provides encrypted storage and fine-grained access control
Keep the secrets as custom attributes within the platform's user management service, accessible at runtime
Store encrypted secrets within an object storage service and allow the application to retrieve them at runtime