What should the solutions architect do to meet this requirement?

By: study aws cloud

Tagged: Solutions Architect Associate

With: 1 Comment

A company is concerned about the security of its public web application due to recent web attacks.The application uses an Application Load Balancer (ALB).A solutions architect must reduce the risk of DDoS attacks against the application.

What should the solutions architect do to meet this requirement?

Add an Amazon Inspector agent to the ALB.

Configure Amazon Macie to prevent attacks.

Enable AWS Shield Advanced to prevent attacks.

Configure Amazon GuardDuty to monitor the ALB.

Explanations:

Amazon Inspector is primarily used for assessing security vulnerabilities in applications, not for DDoS protection.

Amazon Macie is designed for data privacy and protection, specifically for identifying sensitive data; it does not prevent DDoS attacks.

AWS Shield Advanced provides enhanced DDoS protection specifically designed to safeguard applications running on AWS, including those behind an ALB.

Amazon GuardDuty is a threat detection service that monitors for malicious activity, but it does not actively prevent DDoS attacks.

Previous Post: Which AWS service should the company use to meet these requirements?

Next Post: Under the AWS shared responsibility model, which tasks will be the company’s responsibility?

1 Comment

Author

I figure that the answer is:
Enable AWS Shield Advanced to prevent attacks.

Teresa

2 months ago

Permalink

Reply

Leave a Reply to Teresa Cancel reply