ExamGecko
Question list
Search
Search

List of questions

Search

Related questions











Question 212 - ANS-C00 discussion

Report
Export

A network engineer must provide additional safeguards to protect encrypted data at Application Load Balancers (ALBs) through the use of a unique random session key. What should the network engineer do to meet this requirement?

A.
Change the ALB security policy to a policy that supports TLS 1.2 protocol only.
Answers
A.
Change the ALB security policy to a policy that supports TLS 1.2 protocol only.
B.
Use AWS Key Management Service (AWS KMS) to encrypt session keys.
Answers
B.
Use AWS Key Management Service (AWS KMS) to encrypt session keys.
C.
Associate an AWS WAF web ACL with the ALBs, and create a security rule to enforce forward secrecy (FS).
Answers
C.
Associate an AWS WAF web ACL with the ALBs, and create a security rule to enforce forward secrecy (FS).
D.
Change the ALB security policy to a policy that supports forward secrecy (FS).
Answers
D.
Change the ALB security policy to a policy that supports forward secrecy (FS).
Suggested answer: D

Explanation:

Explanation:

Reference: https://aws.amazon.com/about-aws/whats-new/2014/02/19/elastic-load-balancing-perfect-forward-secrecy-andmore-new-security-features/

asked 16/09/2024
Cintron, Rigoberto
37 questions
User
Your answer:
0 comments
Sorted by

Leave a comment first