What is the MOST secure way to accomplish this?

A security engineer has created an Amazon Cognito user pool. The engineer needs to

manually verify the ID and access token sent by the application for troubleshooting purposes

What is the MOST secure way to accomplish this?
A . Extract the subject (sub), audience (aud), and cognito:username from the ID token payload Manually check the subject and audience for the user name In the user pool
B . Search for the public key with a key ID that matches the key ID In the header of the token. Then use a JSON Web Token (JWT) library to validate the signature of the token and extract values, such as the expiry date
C . Verify that the token is not expired. Then use the token_use claim function In Amazon Cognito to validate the key IDs
D . Copy the JSON Web Token (JWT) as a JSON document Obtain the public JSON Web Key (JWK) and convert It to a pem file. Then use the file to validate the original JW

Answer: A

Latest SCS-C01 Dumps Valid Version with 470 Q&As

Latest And Valid Q&A | Instant Download | Once Fail, Full Refund

Subscribe
Notify of
guest
0 Comments
Inline Feedbacks
View all comments