🔥 3-day streak
AWS Certified Security - Specialty149 / 184
Question 149 of 184
A development team has been hardcoding database credentials in their application configuration files stored in a private CodeCommit repository. Security wants the credentials centrally managed, encrypted at rest, retrievable at runtime by the application's ECS task, and audited without embedding any long-lived secret in the container image or task definition. Which approach best meets these requirements with the least ongoing credential-handling burden?
Reviewed for accuracy · Report an issueNext question