AWS Certified Cloud Practitioner (CLF-C02) — Question 289
A global company wants to use a managed security service for protection from SQL injection attacks. The service also must provide detailed logging information about access to the company's ecommerce applications.
Which AWS service will meet these requirements?
Answer options
- A. AWS Network Firewall
- B. Amazon RDS for SQL Server
- C. Amazon GuardDuty
- D. AWS WAF
Correct answer: D
Explanation
AWS WAF is a web application firewall that specifically helps protect web applications from common web exploits, such as SQL injection, and can be configured to provide comprehensive traffic logging. AWS Network Firewall and Amazon GuardDuty are not designed for application-layer SQL injection prevention and logging. Amazon RDS for SQL Server is a relational database management service, not a security protection service.