Your company has a requirement to host an application. The application would be hosted on an EC2 Instance and interacting with a DynamoDB table. There is a security requirement to ensure that all data on the DynamoDB table is encrypted at rest. How can you achieve this with the least number of steps and ensure that all types of data are encrypted?

Answer options:

A.No actions are required as the data stored in Amazon DynamoDB is encrypted at rest by default.
B.Enable encryption at rest for the DynamoDB table. Then enable encryption of the underlying indexes.
C.Enable encryption at rest for the DynamoDB table. Then enable encryption of the underlying keys.
D.Enable encryption at rest for the DynamoDB table. Then enable encryption of the underlying keys and indexes.

Answer – A
The AWS Documentation mentions the following.
All user data stored in Amazon DynamoDB is fully encrypted at rest. DynamoDB encryption at rest provides enhanced security by encrypting all your data at rest using encryption keys stored in AWS Key Management Service (AWS KMS). This functionality helps reduce the operational burden and complexity involved in protecting sensitive data. With encryption at rest, you can build security-sensitive applications that meet strict encryption compliance and regulatory requirements.
All other options are invalid because data at rest is encrypted by default in DynamoDB.For more information on AWS KMS and DynamoDB, please visit the below URL
https://docs.aws.amazon.com/amazondynamodb/latest/developerguide/EncryptionAtRest.html