Q62 — AWS SAA-C03 Ch.2
Question 62 of 65 | ← Chapter 2
Q127. A company is serving an application through Amazon CloudFront. The company wants to protect the application from common SQL injection and cross-site scripting attacks. The company also wants the ability to block IP addresses and apply rate limiting.Which AWS service meets these requirements?
- A. Amazon GuardDuty
- B. AWS Shield
- C. Amazon Inspector
- D. AWS WAF ✓
Correct Answer: D. AWS WAF
Explanation
AWS WAF is a web application firewall that helps to protect web applications from common web exploits such as SQL injection and cross-site scripting (XSS) attacks. It also provides the ability to block IP addresses and apply rate limiting based on configurable rules. Amazon GuardDuty is a threat detection service that continuously monitors for malicious activity and unauthorized behavior in AWS accounts and workloads. AWS Shield is a managed DDoS protection service that safeguards web applications running on AWS.