Question 6
Domain 1: Design Secure ArchitecturesAccording to the AWS Well-Architected Framework, which design principle is recommended for the Security pillar?
Correct answer: A
Explanation
AWS Security pillar design principles include “Implement a strong identity foundation,” because secure access starts with controlling who can authenticate and authorize actions. The source emphasizes “AWS federated access and identity services” and “designing a flexible authorization model” with IAM users, roles, and policies.
Why each option is right or wrong
A. Implement a strong identity foundation
AWS Well-Architected Framework, Security pillar, explicitly lists “Implement a strong identity foundation” as a design principle, and the exam blueprint ties this to IAM, AWS IAM Identity Center, and flexible authorization using users, groups, roles, and policies. In practice, that means establishing federated access and role-based controls first, with MFA for IAM users/root users and least-privilege permissions, rather than relying on ad hoc access methods.
B. Go global in minutes
C. Stop spending money on data center operations
D. Implement feedback loops