AWS Certified SysOps Administrator – Associate (legacy) — Question 817

A customer enquires about whether all his data is secure on AWS, and is especially concerned about Elastic Map Reduce (EMR). You need to inform him of some of the security features in place for AWS. Which of the below statements is incorrect regarding EMR or S3?

Answer options

• A. Every packet sent in the AWS network uses Internet Protocol Security (IPsec).
• B. Amazon S3 provides authentication mechanisms to ensure that stored data is secured against un-authorized access.
• C. Customers may encrypt the input data before they upload it to Amazon S3.
• D. Amazon EMR customers can choose to send data to Amazon S3 using the HTTPS protocol for secure transmission.

Correct answer: A

Explanation

Option A is the correct answer because it is an incorrect statement; AWS does not automatically use IPsec for every packet sent within its internal network. In contrast, Amazon S3 does offer robust authentication controls to prevent unauthorized access, allows users to encrypt data locally before uploading, and supports HTTPS for secure data transmission from Amazon EMR.