AWS SAP-C02 · Question 28 · Domain 2.3: Security Controls
A company is deploying a highly sensitive application on Amazon EC2. The application processes PII and requires that all data in transit between EC2 instances within the VPC be encrypted. The company wants to achieve this with ZERO configuration changes to the application code or the operating system. How can this be achieved?
Answer options:
Configure IPsec VPN tunnels between all EC2 instances.
Use AWS Certificate Manager (ACM) to deploy TLS certificates to the instances.
Use EC2 instances that support AWS Nitro System and launch them in the same VPC.
Enable VPC Flow Logs with encryption enabled.
75 questions · hints · full answers · grading
Expert