An EC2 Instance hosts a Java-based application that accesses a DynamoDB table. This EC2 Instance is currently serving production users. What would be a secure way for the EC2 Instance to access the DynamoDB table?

Answer options:

A.Use IAM Roles with permissions to interact with DynamoDB and assign it to the EC2 Instance.
B.Use KMS Keys with the right permissions to interact with DynamoDB and assign it to the EC2 Instance.
C.Use IAM Access Keys with the right permissions to interact with DynamoDB and assign it to the EC2 Instance.
D.Use IAM Access Groups with the right permissions to interact with DynamoDB and assign it to the EC2 Instance.

Correct Answer - A
Always assign a role to the EC2 Instance to ensure secure access to AWS resources from EC2 Instances.
For more information on IAM Roles, please refer to the below URL:
https://docs.aws.amazon.com/IAM/latest/UserGuide/id_roles.html
An IAM role is similar to a user; it is an AWS identity with permission policies that determine what the identity can and cannot do in AWS. However, instead of being uniquely associated with one person, a role is intended to be assumable by anyone who needs it. Also, an IAM role does not have standard long-term credentials (password or access keys) associated with it. Instead, if a user assumes a role, temporary security credentials are created dynamically and provided to the user.
You can use roles to delegate access to users, applications, or services that normally don`t have access to your AWS resources.
Note:
You can attach the IAM role to the existing EC2 instance. To know more, please visit the following URL:
https://aws.amazon.com/about-aws/whats-new/2017/02/new-attach-an-iam-role-to-your-existing-amazon-ec2-instance/