Topic 1 Question 382
A company has a three-tier application on AWS that ingests sensor data from its users’ devices. The traffic flows through a Network Load Balancer (NLB), then to Amazon EC2 instances for the web tier, and finally to EC2 instances for the application tier. The application tier makes calls to a database.
What should a solutions architect do to improve the security of the data in transit?
Configure a TLS listener. Deploy the server certificate on the NLB.
Configure AWS Shield Advanced. Enable AWS WAF on the NLB.
Change the load balancer to an Application Load Balancer (ALB). Enable AWS WAF on the ALB.
Encrypt the Amazon Elastic Block Store (Amazon EBS) volume on the EC2 instances by using AWS Key Management Service (AWS KMS).
ユーザの投票
コメント(4)
- 正解だと思う選択肢: A
Network Load Balancers now support TLS protocol. With this launch, you can now offload resource intensive decryption/encryption from your application servers to a high throughput, and low latency Network Load Balancer. Network Load Balancer is now able to terminate TLS traffic and set up connections with your targets either over TCP or TLS protocol.
https://docs.aws.amazon.com/elasticloadbalancing/latest/network/create-tls-listener.html
👍 10fruto1232023/03/11 - 正解だと思う選択肢: A
security of data in transit -> think of SSL/TLS. Check: NLB supports TLS https://docs.aws.amazon.com/elasticloadbalancing/latest/network/create-tls-listener.html
B (DDoS), C (SQL Injection), D (EBS) is for data at rest.
👍 6imvb882023/04/17 - 正解だと思う選択肢: A
agree with fruto123
👍 3Maximus0072023/03/16
シャッフルモード