CompTIA Cloud+ (CV0-003) — Question 100

A cloud administrator has deployed a website and needs to improve the site security to meet requirements. The website architecture is designed to have a DBaaS in the back end and autoscaling instances in the front end using a load balancer to distribute the request. Which of the following will the cloud administrator MOST likely use?

Answer options

• A. An API gateway
• B. An IPS/IDS
• C. A reverse proxy
• D. A WAF

Correct answer: D

Explanation

A WAF (Web Application Firewall) is specifically designed to protect web applications by filtering and monitoring HTTP traffic, making it the best choice for improving website security. An API gateway manages APIs but is less focused on web security. An IPS/IDS monitors network traffic for malicious activity, which is not as effective for application-level security. A reverse proxy can help with load balancing and caching but does not specifically target security vulnerabilities.