Deal of The Day! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

Amazon SAA-C03 Exam - Topic 6 Question 12 Discussion

A company has deployed its application on Amazon EC2 instances with an Amazon RDS database. The company used the principle of least privilege to configure the database access credentials. The company's security team wants to protect the application and the database from SQL injection and other web-based attacks.Which solution will meet these requirements with the LEAST operational overhead?
D) Use different database accounts in the application code for different functions. Avoid granting excessive privileges to the database users.
A) Use security groups and network ACLs to secure the database and application servers.
B) Use AWS WAF to protect the application. Use RDS parameter groups to configure the security settings.
C) Use AWS Network Firewall to protect the application and the database.

Amazon SAA-C03 Exam - Topic 6 Question 12 Discussion

Actual exam question for Amazon's SAA-C03 exam
Question #: 12
Topic #: 6
[All SAA-C03 Questions]

A company has deployed its application on Amazon EC2 instances with an Amazon RDS database. The company used the principle of least privilege to configure the database access credentials. The company's security team wants to protect the application and the database from SQL injection and other web-based attacks.

Which solution will meet these requirements with the LEAST operational overhead?

Show Suggested Answer Hide Answer
Suggested Answer: D

by Tyra at Jan 11, 2023, 01:58 AM

Limited Time Offer

25%

Off

Get Premium SAA-C03 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

0/2000 characters
Submit Cancel
Lachelle
7 months ago
I like D for least privilege, but it might add overhead.
upvoted 0 times
...
Tarra
7 months ago
Option A is too basic for modern threats.
upvoted 0 times
...
Scot
7 months ago
Not sure about that, isn't WAF a bit complex to set up?
upvoted 0 times
...
Antione
8 months ago
Totally agree, AWS WAF is super effective!
upvoted 0 times
...
Doug
8 months ago
I think option B is the best choice for web protection.
upvoted 0 times
...
Rosita
8 months ago
I feel like using different database accounts is a good practice, but it might not directly address SQL injection as effectively as WAF would.
upvoted 0 times
...
Weldon
8 months ago
I practiced a similar question where using AWS WAF was the best option for minimizing operational overhead. I think it might apply here too.
upvoted 0 times
...
Berry
8 months ago
I'm not entirely sure, but I think using security groups alone might not be enough to protect against web-based attacks.
upvoted 0 times
...
Colby
8 months ago
I remember studying about AWS WAF and how it can help prevent SQL injection attacks. It seems like a solid choice for this scenario.
upvoted 0 times
...
Viva
8 months ago
This is a tricky one. I'm leaning towards JMeter, but I want to make sure I understand how to properly configure it for an SAP landscape. I'll need to review the documentation carefully.
upvoted 0 times
...
Jesusa
8 months ago
Hmm, this seems like a complex scenario with a lot of moving parts. I'll need to carefully read through the details and think about how to balance the different metrics.
upvoted 0 times
...
Lili
8 months ago
I'm not entirely sure, but I recall practicing questions about NDE methods and their importance in inspections. Could that relate to mitigating CUI?
upvoted 0 times
...
Tresa
8 months ago
SPAN doesn't seem like the right choice for this question, but I can't completely remember what it does in this context.
upvoted 0 times
...
Derrick
1 year ago
Option E: Just turn off the database and hope no one notices. Zero overhead, guaranteed!
upvoted 0 times
...
Cordelia
1 year ago
D all the way, baby! Gotta keep those database creds on lockdown. Although, I did hear a rumor that AWS has a new service called 'AWS Password Manager' - maybe that'll make things even easier.
upvoted 0 times
Rosalia
12 months ago
Option C: Enable Amazon RDS encryption at rest and in transit
upvoted 0 times
...
Trinidad
1 year ago
Option B: Implement AWS Shield for DDoS protection
upvoted 0 times
...
Veronika
1 year ago
Option A: Use AWS WAF to filter and monitor web traffic
upvoted 0 times
...
...
Marguerita
1 year ago
Hmm, I'm torn between B and D. AWS WAF is pretty nifty, but I think D gives you a bit more control and flexibility. Decisions, decisions...
upvoted 0 times
...
Robt
1 year ago
I'm with Bev on this one. D is the clear winner. Anything that reduces operational overhead is a plus in my book.
upvoted 0 times
...
Bev
1 year ago
Option D is the way to go! Least privilege and separation of concerns - that's the AWS security gold standard right there.
upvoted 0 times
Chu
11 months ago
Absolutely, AWS security gold standard for the win!
upvoted 0 times
...
Marva
11 months ago
It's important to protect against SQL injection and other web-based attacks.
upvoted 0 times
...
Cecily
11 months ago
I agree, least privilege and separation of concerns are key.
upvoted 0 times
...
Lou
1 year ago
Option D is definitely the best choice for security.
upvoted 0 times
...
...
Gladys
1 year ago
I prefer option D. Using different database accounts for different functions can help minimize the risk of SQL injection.
upvoted 0 times
...
Ammie
1 year ago
I agree with Dorothy. Using RDS parameter groups to configure security settings is also a good idea.
upvoted 0 times
...
Dorothy
1 year ago
I think option B is the best choice. AWS WAF can help protect the application from web-based attacks.
upvoted 0 times
...

Save Cancel