Which solution will meet these requirements?

By:
In: SAP-C02
Tagged:
With: 1 Comment
A company runs an ecommerce web application on AWS. The web application is hosted as a static website on Amazon S3 with Amazon CloudFront for content delivery. An Amazon APIGateway API invokes AWS Lambda functions to handle user requests and order processing for the web application The Lambda functions store data in an Amazon ROS for MySQL DB cluster that uses On-Demand instances. The DB cluster usage has been consistent in the past 12 months.Recently, the website has experienced SQL injection and web exploit attempts. Customers also report that order processing time has increased during periods of peak usage. During these periods, the Lambda functions often have cold starts. As the company grows, the company needs to ensure scalability and low-latency access during traffic peaks. The company also must optimize the database costs and add protection against the SQL injection and web exploit attempts.

Which solution will meet these requirements?

Configure the Lambda functions to have an increased timeout value during peak periods. Use RDS Reserved Instances for the database. Use CloudFront and subscribe to AWS Shield Advanced to protect against the SQL injection and web exploit attempts.

Increase the memory of the Lambda functions, Transition to Amazon Redshift for the database. Integrate Amazon Inspector with CloudFront to protect against the SQL injection and web exploit attempts.

Use Lambda functions with provisioned concurrency for compute during peak periods, Transition to Amazon Aurora Serverless for the database. Use CloudFront and subscribe to AWS Shield Advanced to protect against the SQL injection and web exploit attempts.

Use Lambda functions with provisioned concurrency for compute during peak periods. Use RDS Reserved Instances for the database. Integrate AWS WAF with CloudFront to protect against the SQL injection and web exploit attempts.

Explanations:

Increasing the Lambda timeout and using RDS Reserved Instances will not address cold starts, scalability, or SQL injection protection effectively. AWS Shield Advanced does not specifically protect against SQL injection or web exploits.

Transitioning to Amazon Redshift is not appropriate for transactional workloads like those of the web application. Also, Amazon Inspector is not designed for protecting against SQL injection on web applications.

Aurora Serverless is not optimal for workloads with high and unpredictable traffic, as it can take time to scale up or down. AWS Shield Advanced does not specifically protect against SQL injection or web exploits.

Provisioned concurrency for Lambda functions ensures low-latency access during peak periods. RDS Reserved Instances optimize costs for consistent DB usage. AWS WAF provides protection against SQL injection and web exploit attempts.

2025-10-14

1 Comment

  1. Keith
    Author

    I infer that the answer is:
    Use Lambda functions with provisioned concurrency for compute during peak periods. Use RDS Reserved Instances for the database. Integrate AWS WAF with CloudFront to protect against the SQL injection and web exploit attempts.

Leave a Reply

Your email address will not be published. Required fields are marked *

11 + three =