AWS Certified Advanced Networking Specialty Practice Exam

What is the most cost-effective way to enable connectivity from an on-premises application to Amazon DynamoDB?

• A. Set up a private Virtual Interface (VIF) and use a database proxy
• B. Set up a public Virtual Interface (VIF) and use DynamoDB client to enable application layer encryption
• C. Use a VPN Gateway and configure IPsec encryption
• D. Establish a direct connection using AWS PrivateLink

The correct answer is: Set up a public Virtual Interface (VIF) and use DynamoDB client to enable application layer encryption

To determine the most cost-effective way to enable connectivity from an on-premises application to Amazon DynamoDB, the focus must be on minimizing costs while ensuring secure access. Using a public Virtual Interface (VIF) allows the on-premises application to directly access AWS services over the internet. This setup is generally more cost-effective than options that require dedicated or private connections. The public VIF is associated with AWS Direct Connect, which provides a direct connection to AWS and allows access to public endpoints, including DynamoDB. Integrating the DynamoDB client with application layer encryption ensures that data is encrypted at the origin before it travels over the internet, enhancing security without necessitating additional infrastructure that can incur further costs. This approach leverages existing client capabilities and avoids the complexity and expense of additional services, such as setting up a VPN or direct connections. The combination of a public VIF and using the DynamoDB client aligns with the goal of keeping the setup cost-effective while still ensuring secure data transmission, making it a practical choice for organizations managing budgets alongside connectivity needs.