ExpertMedium1 markMultiple Choice
AWS SAA-C03 · Question 14 · Domain 1.2: Secure Workloads
A company is hosting a public-facing web application. They want to protect the application from DDoS attacks, SQL injection, and ensure traffic is distributed across multiple Availability Zones. Which THREE services should be combined? (Select THREE.)
A company is hosting a public-facing web application. They want to protect the application from DDoS attacks, SQL injection, and ensure traffic is distributed across multiple Availability Zones. Which THREE services should be combined? (Select THREE.)
Answer options:
A.
Application Load Balancer (ALB)
B.
AWS WAF
C.
AWS Shield
D.
Amazon GuardDuty
E.
AWS Network Firewall
F.
Amazon Macie
How to approach this question
Match requirements to services: Traffic distribution = ALB, SQL injection = WAF, DDoS = Shield.
Full Answer
ALB, WAF, and Shield.
An ALB distributes incoming application traffic across multiple targets in multiple AZs. AWS WAF attached to the ALB protects against SQL injection. AWS Shield Standard (enabled by default) or Advanced protects against DDoS attacks.
Common mistakes
Selecting GuardDuty for active protection.
Practice the full AWS SAA-C03 Practice Exam 3
65 questions · hints · full answers · grading
More questions from this exam
Q01A company stores sensitive documents in an Amazon S3 bucket. The security team requires that only...EasyQ02A large enterprise uses AWS Organizations to manage multiple accounts. The security team wants to...MediumQ03A company hosts a web application on Amazon EC2 instances behind an Application Load Balancer (AL...EasyQ04A company wants to continuously monitor its AWS accounts for malicious activity and unauthorized ...MediumQ05A company needs to encrypt data at rest in Amazon RDS and manage database credentials securely. T...Medium