ExpertMedium1 markMultiple Choice
AWS SAA-C03 · Question 10 · Domain 1.2: Secure Workloads
A company wants to protect its Amazon Route 53 hosted zones and Amazon CloudFront distributions from large-scale DDoS attacks. They also require access to the AWS DDoS Response Team (DRT). Which service should they use?
A company wants to protect its Amazon Route 53 hosted zones and Amazon CloudFront distributions from large-scale DDoS attacks. They also require access to the AWS DDoS Response Team (DRT). Which service should they use?
Answer options:
A.
AWS Shield Standard
B.
AWS WAF
C.
AWS Shield Advanced
D.
Amazon GuardDuty
How to approach this question
Identify the premium DDoS protection service.
Full Answer
C.AWS Shield Advanced✓ Correct
AWS Shield Advanced
AWS Shield Advanced provides expanded DDoS attack protection for web applications running on AWS and includes 24x7 access to the AWS DDoS Response Team (DRT).
Common mistakes
Selecting Shield Standard, which is free but lacks DRT access.
Practice the full AWS SAA-C03 Practice Exam 2
65 questions · hints · full answers · grading
More questions from this exam
Q01A company wants to ensure that no AWS resources can be created in the ap-northeast-1 region acros...EasyQ02A web application runs on Amazon EC2 instances behind an Application Load Balancer (ALB). The com...EasyQ03A company is storing highly sensitive data in an Amazon S3 bucket. The security team requires tha...MediumQ04An application running on an EC2 instance needs to access an Amazon DynamoDB table in a different...HardQ05A company needs to store database credentials securely. The credentials must be automatically rot...Medium