Examice

Exam CAS-004 All QuestionsBrowse all questions from this exam

Question 84

An organization developed a social media application that is used by customers in multiple remote geographic locations around the world. The organization's headquarters and only datacenter are located in New York City. The Chief Information Security Officer wants to ensure the following requirements are met for the social media application:

✑ Low latency for all mobile users to improve the users' experience

✑ SSL offloading to improve web server performance

✑ Protection against DoS and DDoS attacks

✑ High availability

Which of the following should the organization implement to BEST ensure all requirements are met?

A cache server farm in its datacenter

A load-balanced group of reverse proxy servers with SSL acceleration

A CDN with the origin set to its datacenter

Dual gigabit-speed Internet connections with managed DDoS prevention

Correct Answer: C

A CDN with the origin set to its datacenter is the best solution to meet all the specified requirements. CDNs have edge servers strategically placed around the world that can cache and deliver content closer to end users, significantly reducing latency and improving the user experience for customers in remote locations. CDNs are also capable of SSL offloading, thus improving the performance of the web servers by handling SSL/TLS encryption and decryption. Additionally, CDNs have built-in protections against DoS and DDoS attacks, offering an additional layer of security. Finally, CDNs ensure high availability by distributing content across multiple edge servers and rerouting traffic in case of server failure or high load, thus maintaining continuous availability of the application.

Discussion

Mr_BuCk3th34DOption: C

Option B, a load-balanced group of reverse proxy servers with SSL acceleration, could potentially improve the performance of the social media application and provide some protection against DoS and DDoS attacks, but it would not address the issue of latency for mobile users in remote locations. In this case, setting the origin of the CDN to the organization's datacenter would allow the social media application to be served from the CDN's edge servers located closer to the users, reducing latency and improving the users' experience. The CDN's edge servers could also be configured to perform SSL offloading, improving the performance of the organization's web servers by handling the SSL/TLS encryption and decryption. Additionally, the CDN's edge servers could be configured to protect against DoS (Denial of Service) and DDoS (Distributed Denial of Service) attacks by filtering out malicious traffic and limiting the amount of traffic that is allowed to reach the origin servers. This would help ensure the high availability of the social media application.

nmap_king_22

A load-balanced group of reverse proxy servers can distribute incoming requests to the closest or least loaded server, reducing latency for mobile users. This helps improve the users' experience by ensuring that they connect to the server with the lowest latency.

javier051977Option: B

A cache server farm in its datacenter would improve performance, but it does not address the requirements for SSL offloading, DoS/DDoS protection, or high availability. A CDN with the origin set to its datacenter would help with low latency, but it does not address the requirements for SSL offloading, DoS/DDoS protection, or high availability. Dual gigabit-speed internet connections with managed DDoS prevention would provide some level of protection against DoS/DDoS attacks, but it does not address the requirements for SSL offloading, low latency, or high availability. Therefore, a load-balanced group of reverse proxy servers with SSL acceleration would be the best choice to meet all the given requirements.

ryanzouOption: C

I use C in my work, prefer to select option C

BLADESWIFTKNIFEOption: C

A content delivery network, or content distribution network, is a geographically distributed network of proxy servers and their data centers. The goal is to provide high availability and performance by distributing the service spatially relative to end users. What are the Pros & Cons of CDN? Pros of CDN. Quick Delivery of Assets. Caters to a Large Number of Users. Managing Traffic Load. Control Over Delivery of Assets. Cons of CDN. Good Things Come With Extra Cost. Location of Servers. Support can be an Issue.

adamwellaOption: C

CDN addresses the global latency

klosinskil

But nothing for ssl

ts260Option: C

Only C addresses the global latency

AgronaOption: C

Addresses availability and latency

23169fdOption: C

Low Latency: CDNs have distributed edge servers located in various geographic locations around the world. This ensures that content is delivered from a server that is geographically close to the user, significantly reducing latency and improving the user experience. SSL Offloading: Many CDNs offer SSL/TLS offloading, which offloads the encryption and decryption tasks from the origin server, thus improving the performance of the web servers at the datacenter. Protection against DoS and DDoS Attacks: CDNs have built-in protections against DoS and DDoS attacks. They can absorb and mitigate attack traffic before it reaches the origin server, providing an additional layer of security. High Availability: CDNs provide high availability by distributing content across multiple servers. In case of server failure or high traffic, the CDN can route requests to other available servers, ensuring continuous availability of the application.

surfugandaOption: B

[correct]B. A load-balanced group of reverse proxy servers with SSL acceleration: Low latency: YES SSL offloading: YES DoS and DDoS protection: YES High availability: YES [incorrect]C. A CDN with the origin set to its datacenter: Low latency: When a request is made for content that is not cached at an edge location of the CDN, the CDN fetches the content from the organization's datacenter, which serves as the origin server. This means that the content is pulled from the primary storage location, processed if necessary (e.g., for dynamic content), and then delivered to the user through the CDN's network. Since origin is set to datacenter datacenter, users may experience higher latency compared to when content is served directly from nearby edge servers. Thus this option has potential to FAIL to meet the low latency requirement. SSL offloading: YES DoS and DDoS protection: YES High availability: YES

7d84bc7Option: C

"used by customers in multiple remote geographic locations around the world"

AnarckiiOption: C

Best Choice: C. A CDN with the origin set to its datacenter Explanation: CDNs provide low-latency access by caching content closer to end-users. SSL offloading is often supported by CDNs at the edge. CDNs inherently provide protection against DoS and DDoS attacks with their distributed infrastructure. CDNs contribute to high availability by distributing content across multiple edge servers.

nmap_king_22Option: B

To meet the requirements of low latency, SSL offloading, protection against DoS and DDoS attacks, and high availability for a social media application used by customers in multiple remote geographic locations around the world, the organization should implement the following: B. A load-balanced group of reverse proxy servers with SSL acceleration.

bjjhighlightsOption: C

This is textbook AWS shit guys. CDN + load balancer + SSL offloading

bjjhighlights

The answer is `C` because the you need the CDN to nerf the DDoS and improve latency across the globe

ThatGuyOverThereOption: B

I don't think the CDN would be the best answer because you are still using a single origin. If your single origin goes down, the CDNs may be able to continue to server up some content but the entire app will not continue to function. Therefore you are not highly available.

BiteSizeOption: C

A CDN exists for the sole purpose of getting after all of those requirements. Source: Verifying each answer against Chat GPT, my experience, other test banks, a written book, and weighing in the discussion from all users to create a 100% accurate guide for myself before I take the exam. (It isn't easy because of the time needed, but it is doing my diligence)

lifeblood12005Option: C

Content Delivery Network (CDN) CDNs are geographically dispersed servers delivering content in the form of web pages, media, and images to worldwide consumers. A large proportion of all web traffic is delivered by CDNs. Sites such as YouTube, Netflix, and Amazon depend upon this service to deliver reliable low latency content to their customers. As the data is dispersed, it also offers an effective defense against DDoS attacks. CDNs use caching to ensure data is available on the edge of the network, where users or customers will benefit from lower latency and improved responses. This type of design will allow an enterprise to be very resilient, offering customers a reliable low-latency experience over a large geographic area. see chapter 15 The correct answer is: A CDN with the origin set to its datacenter

Andy2345Option: C

Does a CDN fulfill the SSL offloading requirement? Can't find much in terms of SSL offloading/termination with CDNs.

Andy2345

Any thoughts?

vakama

Yes, CDN can provide SSL/TLS offloading. https://developers.cloudflare.com/ssl/origin-configuration/ssl-modes/flexible/

Andy2345

I see. Thank you very much!