Amazon Exam SAA-C03 Topic 6 Question 12 Discussion

Actual exam question for Amazon's SAA-C03 exam

Question #: 12
Topic #: 6

A company has deployed its application on Amazon EC2 instances with an Amazon RDS database. The company used the principle of least privilege to configure the database access credentials. The company's security team wants to protect the application and the database from SQL injection and other web-based attacks.

Which solution will meet these requirements with the LEAST operational overhead?

AUse security groups and network ACLs to secure the database and application servers.

BUse AWS WAF to protect the application. Use RDS parameter groups to configure the security settings.

CUse AWS Network Firewall to protect the application and the database.

DUse different database accounts in the application code for different functions. Avoid granting excessive privileges to the database users.

Show Suggested Answer

Suggested Answer: D

by Tyra at Jan 11, 2023, 01:58 AM

Limited Time Offer

25%

Off

Get Premium SAA-C03 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel

Gladys

14 days ago

I prefer option D. Using different database accounts for different functions can help minimize the risk of SQL injection.

upvoted 0 times

...

Ammie

16 days ago

I agree with Dorothy. Using RDS parameter groups to configure security settings is also a good idea.

upvoted 0 times

...

Dorothy

21 days ago

I think option B is the best choice. AWS WAF can help protect the application from web-based attacks.

upvoted 0 times

...