Explanation:
The question focuses on encrypting payment information between the customer's browser and GCP services during checkout, which involves HTTPS traffic (HTTP over SSL/TLS). Option A is correct because an L7 (Application Layer) Load Balancer with an SSL certificate is designed to handle HTTPS traffic, terminate SSL/TLS at the load balancer, and enforce encryption, aligning with best practices for securing web applications. The community discussion unanimously supports A (100% consensus), emphasizing that L7 load balancers are appropriate for HTTP/HTTPS traffic. Option B is less suitable as Network TCP Load Balancers (L4) operate at the transport layer and do not natively handle SSL termination or HTTP-specific features. Option C is incorrect because merely allowing inbound port 443 traffic does not enforce encryption or SSL certificate configuration. Option D is irrelevant as it addresses outbound traffic, which does not secure the inbound customer connection.
Ultimate access to all questions.
No comments yet.
An e-commerce company is migrating its online store to Google Cloud Platform and needs to ensure that payment information is encrypted during transit between a customer's web browser and their GCP services at checkout. What is the recommended solution?
A
Configure an SSL Certificate on an L7 Load Balancer and require encryption.
B
Configure an SSL Certificate on a Network TCP Load Balancer and require encryption.
C
Configure the firewall to allow inbound traffic on port 443, and block all other inbound traffic.
D
Configure the firewall to allow outbound traffic on port 443, and block all other outbound traffic.