AWS Certified Security – Specialty — Question 151

Users report intermittent availability of a web application hosted on AWS. Monitoring systems report an excess of abnormal network traffic followed by high CPU utilization on the application web tier.
Which of the following techniques will improve the availability of the application? (Choose two.)

Answer options

• A. Deploy AWS WAF to block all unsecured web applications from accessing the internet.
• B. Deploy an Intrusion Detection/Prevention Systems (IDS/IPS) to monitor or block unusual incoming network traffic.
• C. Configure security groups to allow outgoing network traffic only from hosts that are protected with up-to-date antivirus software.
• D. Create Amazon CloudFront distribution and configure AWS WAF rules to protect the web applications from malicious traffic.
• E. Use the default Amazon VPC for external-facing systems to allow AWS to actively block malicious network traffic affecting Amazon EC2 instances.

Correct answer: B, D

Explanation

The correct answers, B and D, are effective because deploying an IDS/IPS can help identify and mitigate unusual network traffic patterns, enhancing security and availability. Creating a CloudFront distribution with AWS WAF rules offers an additional layer of protection by filtering out malicious traffic before it reaches the application. The other options either do not directly address the problem or may not significantly improve availability.