A company runs an ecommerce web application on AWS. The web application is hosted as a st…

Question

A company runs an ecommerce web application on AWS. The web application is hosted as a static website on Amazon S3 with Amazon CloudFront for content delivery. An Amazon API Gateway API invokes AWS Lambda functions to handle user requests and order processing for the web application The Lambda functions store data in an Amazon ROS for MySQL DB cluster that uses On-Demand instances. The DB cluster usage has been consistent in the past 12 months. Recently, the website has experienced SQL injection and web exploit attempts. Customers also report that order processing time has increased during periods of peak usage. During these periods, the Lambda functions often have cold starts. As the company grows, the company needs to ensure scalability and low-latency access during traffic peaks. The company also must optimize the database costs and add protection against the SQL injection and web exploit attempts. Which solution will meet these requirements?

Accepted Answer

Correct answer: D. D. Use Lambda functions with provisioned concurrency for compute during peak periods. Use RDS Reserved Instances for the database. Integrate AWS WAF with CloudFront to protect against the SQL injection and web exploit attempts. — To resolve Lambda cold starts and ensure low latency during busy periods, using provisioned concurrency is the correct approach. Since the database workload has been highly consistent for the past year, purchasing RDS Reserved Instances offers the best cost optimization, whereas Aurora Serverless would be less cost-effective for stable workloads. Finally, AWS WAF is designed specifically to protect applications against web exploits like SQL injection, while AWS Shield Advanced is meant for DDoS protection.

AWS Certified Solutions Architect – Professional (SAP-C02) — Question 488

Answer options

Correct answer: D

Explanation