Answer-first summary for fast verification
Answer: Implement TLS on the NLB with a server certificate.
The correct answer is A: Implement TLS on the NLB with a server certificate. This is because TLS (Transport Layer Security) ensures that data in transit is encrypted between the client and the load balancer, providing a secure channel to protect data from potential eavesdropping and tampering. Configuring a TLS listener on the NLB and deploying a valid server certificate addresses the requirement for improving the security of data in transit effectively. Other options mentioned either do not address the data-in-transit security directly or are related to different aspects of security like shielding against attacks or at-rest encryption.
Author: LeetQuiz Editorial Team
Ultimate access to all questions.
How can a solutions architect enhance data-in-transit security for a three-tier AWS application receiving sensor data, involving an NLB, EC2 for web and application tiers, and database calls?
A
Implement TLS on the NLB with a server certificate.
B
Use AWS Shield Advanced and enable AWS WAF on the NLB.
C
Switch to an ALB and enable AWS WAF for enhanced security.
D
Encrypt EBS volumes on EC2 instances with AWS KMS.
No comments yet.