ExpertEasy1 markMultiple Choice
AWS SAA-C03 · Question 08 · Domain 1.2: Secure Workloads
A company is hosting a public-facing web application on an Application Load Balancer (ALB). The security team wants to protect the application from common web exploits, such as SQL injection and cross-site scripting (XSS). Which AWS service should be used?
A company is hosting a public-facing web application on an Application Load Balancer (ALB). The security team wants to protect the application from common web exploits, such as SQL injection and cross-site scripting (XSS). Which AWS service should be used?
Answer options:
A.
AWS Shield Standard
B.
AWS WAF
C.
AWS Network Firewall
D.
Amazon GuardDuty
How to approach this question
Match 'SQL injection' and 'XSS' with AWS WAF.
Full Answer
B.AWS WAF✓ Correct
AWS WAF
AWS WAF is a web application firewall that lets you monitor the HTTP and HTTPS requests that are forwarded to an Amazon API Gateway API, Amazon CloudFront, or an Application Load Balancer. It protects against common web exploits like SQL injection and XSS.
Common mistakes
Confusing AWS WAF (Layer 7 web exploits) with AWS Shield (DDoS protection).
Practice the full AWS SAA-C03 Practice Exam 1
65 questions · hints · full answers · grading
More questions from this exam
Q01A company has multiple AWS accounts in an AWS Organizations organization. The security team wants...MediumQ02A solutions architect is designing an application that will run on Amazon EC2 instances. The appl...EasyQ03A company wants to implement a federated identity solution for its employees to access the AWS Ma...MediumQ04A mobile application needs to access Amazon DynamoDB directly to read user-specific data. The app...HardQ05A company is hosting a web application on Amazon EC2 instances. The application connects to an Am...Medium