Examice

Exam SAP-C02 All QuestionsBrowse all questions from this exam

Question 499

A company runs an ecommerce web application on AWS. The web application is hosted as a static website on Amazon S3 with Amazon CloudFront for content delivery. An Amazon API

Gateway API invokes AWS Lambda functions to handle user requests and order processing for the web application The Lambda functions store data in an Amazon ROS for MySQL DB cluster that uses On-Demand instances. The DB cluster usage has been consistent in the past 12 months.

Recently, the website has experienced SQL injection and web exploit attempts. Customers also report that order processing time has increased during periods of peak usage. During these periods, the Lambda functions often have cold starts. As the company grows, the company needs to ensure scalability and low-latency access during traffic peaks. The company also must optimize the database costs and add protection against the SQL injection and web exploit attempts.

Which solution will meet these requirements?

Configure the Lambda functions to have an increased timeout value during peak periods. Use RDS Reserved Instances for the database. Use CloudFront and subscribe to AWS Shield Advanced to protect against the SQL injection and web exploit attempts.

Increase the memory of the Lambda functions, Transition to Amazon Redshift for the database. Integrate Amazon Inspector with CloudFront to protect against the SQL injection and web exploit attempts.

Use Lambda functions with provisioned concurrency for compute during peak periods, Transition to Amazon Aurora Serverless for the database. Use CloudFront and subscribe to AWS Shield Advanced to protect against the SQL injection and web exploit attempts.

Use Lambda functions with provisioned concurrency for compute during peak periods. Use RDS Reserved Instances for the database. Integrate AWS WAF with CloudFront to protect against the SQL injection and web exploit attempts.

Correct Answer: D

Using AWS Lambda's provisioned concurrency ensures that the functions are pre-warmed and ready to handle requests, thus minimizing cold starts and improving order processing times during peak usage. For the database, Reserved Instances for Amazon RDS provide a cost-effective solution compared to On-Demand instances, given the consistent usage pattern. To protect against SQL injection and web exploit attempts, AWS WAF (Web Application Firewall) integrated with CloudFront is the recommended service as it specifically addresses such threats, rather than AWS Shield Advanced which is more focused on DDoS protection.

Discussion

ebbff63Option: D

D - AWS WAF for SQL injection and web exploit protection

vip2Option: D

AWS WAF instead of AWS Shield

gfhbox0083

D, for sure. To protect against SQL injection attacks, AWS WAF (Web Application Firewall) is the appropriate service to use, not AWS Shield Advanced.

mifuneOption: C

Lambda functions with provisioned concurrency for compute during peak periods + Aurora Serverless + AWS Shield Advanced, I don't see any better choice. Answer C.

zapper1234

C - using Lambda concuraancy with Aurora Serverless solves a bunch of the issues

toma

it is D, no need for AWS Shield Advanced, WAF is sufficient.

kupo777

it is D, AWS Shield Advanced is not required; AWS WAF can be used to protect against common web exploits such as SQL injection and cross-site scripting (XSS) attacks.