A Developer is writing several Lambda functions that each access data in a common RDS DB instance. They must share a connection string that contains the secret database credentials. A company policy requires that all secrets be stored encrypted.
Which solution will minimize the amount of code the Developer must write?
 

Answer options:

A.Use common DynamoDB table to store settings.
B.Use AWS Lambda environment variables.
C.Use Systems Manager Parameter Store secure strings.
D.Use a table in a separate RDS database.

Answer – C
The AWS Documentation mentions the following to support this.
AWS Systems Manager Parameter Store provides secure, hierarchical storage for configuration data management and secrets management. You can store data such as passwords, database strings, and license codes as parameter values. You can store values as plain text or encrypted data. You can then reference values by using the unique name that you specified when you created the parameter.
Options A and D are incorrect and inefficient since you don’t need a separate table. Also, it does not mention in the answer about the encryption of the underlying tables.
Option B is not correct since you need to share the encrypted connection strings.
For more information on the Systems Manager Parameter Store, please refer to the below Links-
https://docs.aws.amazon.com/systems-manager/latest/userguide/systems-manager-paramstore.html
https://aws.amazon.com/blogs/compute/sharing-secrets-with-aws-lambda-using-aws-systems-manager-parameter-store/