What should the solutions architect do to meet this requirement?

By: study aws cloud

On: December 31, 2024

Tagged: Solutions Architect Associate

With: 0 Comments

A company is concerned about the security of its public web application due to recent web attacks.The application uses an Application Load Balancer (ALB).A solutions architect must reduce the risk of DDoS attacks against the application.

What should the solutions architect do to meet this requirement?

Add an Amazon Inspector agent to the ALB.

Configure Amazon Macie to prevent attacks.

Enable AWS Shield Advanced to prevent attacks.

Configure Amazon GuardDuty to monitor the ALB.

Explanations:

Amazon Inspector is primarily used for assessing security vulnerabilities in applications, not for DDoS protection.

Amazon Macie is designed for data privacy and protection, specifically for identifying sensitive data; it does not prevent DDoS attacks.

AWS Shield Advanced provides enhanced DDoS protection specifically designed to safeguard applications running on AWS, including those behind an ALB.

Amazon GuardDuty is a threat detection service that monitors for malicious activity, but it does not actively prevent DDoS attacks.

Previous Post: Under the AWS shared responsibility model, which tasks will be the company’s responsibility?

Next Post: Which AWS service should the company use to meet these requirements?

Leave a Reply Cancel reply