The AWS Certified Developer - Associate (DVA-C02) validates whether you can build, secure, deploy, debug, and optimize AWS cloud applications as a developer. This is not an architecture-first exam. AWS is testing how well you can work with service APIs, SDKs, Lambda, data stores, deployment workflows, and observability in real application scenarios.
The official exam guide is also clear about scope boundaries. Deep architecture design, IAM administration, server administration, and designing whole CI/CD systems from scratch are not the center of the exam. Your preparation should focus on application development patterns on AWS, especially serverless, event-driven integration, secure service access, deployment pipelines, and troubleshooting.
Exam At a Glance
| Attribute | Value |
|---|---|
| Certification | AWS Certified Developer - Associate |
| Exam code | DVA-C02 |
| Level | Associate |
| Duration | 130 minutes |
| Question count | 65 total questions |
| Question types | Multiple choice and multiple response |
| Scored questions | 50 |
| Unscored questions | 15 |
| Cost | $150 USD |
| Recommended background | 1 or more years of hands-on experience developing and maintaining applications by using AWS services |
| Target candidate | Someone performing a developer role with practical AWS API, SDK, deployment, and debugging experience |
- Official certification page: AWS Certified Developer - Associate
- Official exam guide: AWS Certified Developer - Associate exam guide
- Official exam prep plan: AWS Skill Builder 4-step exam prep plan
- Official technologies reference: DVA-C02 technologies and concepts
- Official in-scope services reference: DVA-C02 in-scope AWS services
Official Exam Domains
- Development with AWS Services (32%)
- Security (26%)
- Deployment (24%)
- Troubleshooting and Optimization (18%)
The weighting tells you what to prioritize: application development patterns come first, but security and deployment are close behind. In real exam questions, those domains overlap. AWS often wraps a Lambda or API implementation problem together with IAM, deployment stages, and observability.
1. Development with AWS Services
This is the core DVA-C02 domain. You should be comfortable writing cloud-native application logic, integrating AWS services from code, and choosing the right event-driven pattern for the workload.
- AWS application patterns and integrations - The official task statements include event-driven, microservices, synchronous versus asynchronous communication, API development, SDK-based integration, and streaming use cases. Official docs: DVA-C02 Domain 1 objectives, What is Amazon API Gateway?, What is Amazon EventBridge?.
- Lambda development and event handling - Know how to configure runtime settings, memory, concurrency, timeouts, triggers, destinations, and failure handling for Lambda-based applications. Official docs: Task 2: Develop code for AWS Lambda, AWS Lambda developer guide, What is serverless development?.
- Messaging and asynchronous coordination - Be able to reason about queues, fanout topics, workflows, and loosely coupled processing. DVA questions frequently hide the answer in event-driven design patterns. Official docs: What is Amazon SQS?, What is Amazon SNS?, What is AWS Step Functions?.
- Data stores in application development - Study DynamoDB keys, indexes, consistency models, lifecycle handling, and when caching or purpose-built stores are more appropriate. Official docs: Task 3: Use data stores in application development, What is Amazon DynamoDB?.
- Testing and resilience in code - Domain 1 also includes unit tests, fault-tolerant code, retry logic, circuit-breaker thinking, and third-party integration resilience. Official docs: Domain 1 task statements, Serverless development guide.
Exam tip: Treat Domain 1 as applied cloud development, not framework trivia. AWS wants to know whether you can choose and integrate managed services cleanly from application code.
2. Security
This domain tests security from a developer viewpoint. You need to know how applications authenticate, authorize, encrypt, and protect sensitive data when they call AWS services or expose endpoints.
- Application authentication and authorization - Study federated access, bearer tokens, programmatic access, IAM roles, and permissions for application-to-service communication. Official docs: DVA-C02 Domain 2 objectives, What is IAM?.
- Encryption and key usage - You should understand encryption at rest, encryption in transit, cross-account encryption patterns, and key rotation basics. Official docs: Task 2: Implement encryption by using AWS services, AWS KMS overview.
- Sensitive data management in code - The official guide explicitly calls out data classification, environment variable protection, secret handling, masking, and sanitization. Official docs: Task 3: Manage sensitive data in application code.
- API and service access control - Expect scenario questions around secured API calls, role assumptions, and fine-grained access decisions inside distributed applications. Official docs: Amazon API Gateway overview, Domain 2 task statements.
- Least privilege from a developer workflow - The right answer is usually temporary credentials, narrowly scoped permissions, and managed identity patterns instead of embedded or long-lived secrets. Official docs: IAM security best practices.
Exam tip: DVA security questions are usually more practical than theoretical. Focus on how an application obtains secure access and how sensitive values are protected at runtime.
3. Deployment
This domain is about packaging, testing, promoting, and releasing application changes on AWS. AWS wants to see that you understand how code moves safely between environments.
- Artifact preparation and environment configuration - Study how code packages, dependencies, configuration files, container images, and environment-specific settings affect deployment readiness. Official docs: DVA-C02 Domain 3 objectives.
- Testing in development and staging environments - Domain 3 explicitly includes deployed-code testing, integration tests, mock APIs, stage-based endpoint testing, and event-driven application validation. Official docs: Task 2: Test applications in development environments, Amazon API Gateway.
- Infrastructure as code and deployment automation - Expect questions involving repeatable deployment through templates, serverless packaging, and orchestrated workflows. Official docs: Task 3: Automate deployment testing, Serverless development guide, What is AWS CodePipeline?.
- Release strategies and rollback - Study blue/green, canary, rolling deployment ideas, application version management, branch-based release flow, and rollback handling. Official docs: Task 4: Deploy code by using AWS CI/CD services, AWS CodePipeline overview.
- Service-level deployment features - AWS often tests whether you know that Lambda, API Gateway, and related services include built-in deployment concepts that affect how releases are promoted. Official docs: Domain 3 task statements, Amazon API Gateway.
Exam tip: Deployment questions are usually asking for safe, repeatable delivery. Prefer answers that use automation, versioned artifacts, staged environments, and rollback-friendly strategies.
4. Troubleshooting and Optimization
This domain focuses on root cause analysis, observability, and application performance. It is smaller by weight, but it is where many candidates lose points because they under-study logs, traces, and optimization patterns.
- Logs, metrics, and traces - You should know how to use application metrics, logs, traces, and dashboards to debug defects or deployment failures. Official docs: DVA-C02 Domain 4 objectives, What is Amazon CloudWatch?.
- Instrumenting code for observability - Domain 4 explicitly includes custom metrics, structured logging, tracing annotations, health checks, and notification alerts. Official docs: Task 2: Instrument code for observability, CloudWatch overview.
- Application performance tuning - Study concurrency, memory and compute sizing, messaging filter strategies, caching, and request-path optimization. Official docs: Task 3: Optimize applications by using AWS services and features, AWS Lambda, Amazon DynamoDB.
- Queue and event troubleshooting - Be ready to debug dead-letter behavior, failed integrations, event handling problems, and message flow issues in event-driven systems. Official docs: Amazon SQS, Amazon EventBridge.
- Deployment failure diagnosis - AWS often combines release questions with output logs, health indicators, and rollback decisions. Official docs: Domain 4 task statements, AWS CodePipeline.
Exam tip: Troubleshooting questions usually reward the option that gives you better signal first. Logs, metrics, traces, and alarms are often the correct next step before a bigger redesign.
Recommended 5-Week Study Plan
| Week | Focus | Primary resources |
|---|---|---|
| 1 | Exam guide, Domain 1 foundations, API integration, event-driven patterns | Exam guide, Domain 1 page, API Gateway, EventBridge, SQS, SNS, Step Functions |
| 2 | Lambda development, DynamoDB, and application state/data patterns | Lambda docs, serverless guide, Domain 1 page, DynamoDB docs |
| 3 | Application security and sensitive data handling | Domain 2 page, IAM intro, IAM best practices, KMS overview |
| 4 | Deployment, IaC, CI/CD, and release strategies | Domain 3 page, API Gateway, CodePipeline, serverless guide |
| 5 | Observability, optimization, and mixed scenario practice | Domain 4 page, CloudWatch, Lambda, DynamoDB, practice questions |
Last-Mile Exam Strategy
- Know the scope boundary: if an answer starts redesigning the entire enterprise architecture when the question is really about application code or deployment, it is often the distractor.
- Memorize the most common developer comparisons: SQS vs SNS vs EventBridge, Lambda sync vs async handling, query vs scan in DynamoDB, and logs vs metrics vs traces.
- Prefer managed identity and deployment patterns over embedded credentials or manual release steps.
- Practice translating every scenario into one of four buckets: build, secure, deploy, or troubleshoot. DVA-C02 questions usually become much clearer once you identify the bucket.
- Use the official domain pages as your study boundary so you do not over-invest in services or operational topics that AWS marked as out of scope for this role.
If you want the practice layer after the official docs, work through our AWS Developer Associate practice questions. If you also want stronger architecture judgment, pair this guide with our AWS Solutions Architect Associate study guide.
The cleanest way to pass DVA-C02 is to think like an AWS application developer: choose the right managed building blocks, secure service access correctly, deploy changes safely, and use observability data to fix problems quickly. That is the pattern the exam rewards again and again.