CAS-004 Exam QuestionsBrowse all questions from this exam
Go to Exam

CAS-004 Exam - Question 84

An organization developed a social media application that is used by customers in multiple remote geographic locations around the world. The organization's headquarters and only datacenter are located in New York City. The Chief Information Security Officer wants to ensure the following requirements are met for the social media application:

✑ Low latency for all mobile users to improve the users' experience

✑ SSL offloading to improve web server performance

✑ Protection against DoS and DDoS attacks

✑ High availability

Which of the following should the organization implement to BEST ensure all requirements are met?

Show Answer
Correct Answer: BC

A CDN with the origin set to its datacenter is the best solution to meet all the specified requirements. CDNs have edge servers strategically placed around the world that can cache and deliver content closer to end users, significantly reducing latency and improving the user experience for customers in remote locations. CDNs are also capable of SSL offloading, thus improving the performance of the web servers by handling SSL/TLS encryption and decryption. Additionally, CDNs have built-in protections against DoS and DDoS attacks, offering an additional layer of security. Finally, CDNs ensure high availability by distributing content across multiple edge servers and rerouting traffic in case of server failure or high load, thus maintaining continuous availability of the application.

Discussion

17 comments
Sign in to comment
Mr_BuCk3th34DOption: C
Dec 27, 2022

Option B, a load-balanced group of reverse proxy servers with SSL acceleration, could potentially improve the performance of the social media application and provide some protection against DoS and DDoS attacks, but it would not address the issue of latency for mobile users in remote locations. In this case, setting the origin of the CDN to the organization's datacenter would allow the social media application to be served from the CDN's edge servers located closer to the users, reducing latency and improving the users' experience. The CDN's edge servers could also be configured to perform SSL offloading, improving the performance of the organization's web servers by handling the SSL/TLS encryption and decryption. Additionally, the CDN's edge servers could be configured to protect against DoS (Denial of Service) and DDoS (Distributed Denial of Service) attacks by filtering out malicious traffic and limiting the amount of traffic that is allowed to reach the origin servers. This would help ensure the high availability of the social media application.

nmap_king_22
Oct 13, 2023

A load-balanced group of reverse proxy servers can distribute incoming requests to the closest or least loaded server, reducing latency for mobile users. This helps improve the users' experience by ensuring that they connect to the server with the lowest latency.

ryanzouOption: C
Nov 5, 2022

I use C in my work, prefer to select option C

javier051977Option: B
Apr 5, 2023

A cache server farm in its datacenter would improve performance, but it does not address the requirements for SSL offloading, DoS/DDoS protection, or high availability. A CDN with the origin set to its datacenter would help with low latency, but it does not address the requirements for SSL offloading, DoS/DDoS protection, or high availability. Dual gigabit-speed internet connections with managed DDoS prevention would provide some level of protection against DoS/DDoS attacks, but it does not address the requirements for SSL offloading, low latency, or high availability. Therefore, a load-balanced group of reverse proxy servers with SSL acceleration would be the best choice to meet all the given requirements.

AgronaOption: C
Aug 10, 2022

Addresses availability and latency

ts260Option: C
Sep 17, 2022

Only C addresses the global latency

adamwellaOption: C
Sep 23, 2022

CDN addresses the global latency

klosinskil
Sep 25, 2022

But nothing for ssl

BLADESWIFTKNIFEOption: C
Jan 27, 2023

A content delivery network, or content distribution network, is a geographically distributed network of proxy servers and their data centers. The goal is to provide high availability and performance by distributing the service spatially relative to end users. What are the Pros & Cons of CDN? Pros of CDN. Quick Delivery of Assets. Caters to a Large Number of Users. Managing Traffic Load. Control Over Delivery of Assets. Cons of CDN. Good Things Come With Extra Cost. Location of Servers. Support can be an Issue.

Andy2345Option: C
Oct 2, 2022

Does a CDN fulfill the SSL offloading requirement? Can't find much in terms of SSL offloading/termination with CDNs.

Andy2345
Nov 5, 2022

Any thoughts?

vakama
Nov 21, 2022

Yes, CDN can provide SSL/TLS offloading. https://developers.cloudflare.com/ssl/origin-configuration/ssl-modes/flexible/

Andy2345
Dec 2, 2022

I see. Thank you very much!

lifeblood12005Option: C
Jul 15, 2023

Content Delivery Network (CDN) CDNs are geographically dispersed servers delivering content in the form of web pages, media, and images to worldwide consumers. A large proportion of all web traffic is delivered by CDNs. Sites such as YouTube, Netflix, and Amazon depend upon this service to deliver reliable low latency content to their customers. As the data is dispersed, it also offers an effective defense against DDoS attacks. CDNs use caching to ensure data is available on the edge of the network, where users or customers will benefit from lower latency and improved responses. This type of design will allow an enterprise to be very resilient, offering customers a reliable low-latency experience over a large geographic area. see chapter 15 The correct answer is: A CDN with the origin set to its datacenter

BiteSizeOption: C
Jul 18, 2023

A CDN exists for the sole purpose of getting after all of those requirements. Source: Verifying each answer against Chat GPT, my experience, other test banks, a written book, and weighing in the discussion from all users to create a 100% accurate guide for myself before I take the exam. (It isn't easy because of the time needed, but it is doing my diligence)

ThatGuyOverThereOption: B
Sep 26, 2023

I don't think the CDN would be the best answer because you are still using a single origin. If your single origin goes down, the CDNs may be able to continue to server up some content but the entire app will not continue to function. Therefore you are not highly available.

bjjhighlightsOption: C
Oct 13, 2023

This is textbook AWS shit guys. CDN + load balancer + SSL offloading

bjjhighlights
Oct 15, 2023

The answer is `C` because the you need the CDN to nerf the DDoS and improve latency across the globe

nmap_king_22Option: B
Oct 13, 2023

To meet the requirements of low latency, SSL offloading, protection against DoS and DDoS attacks, and high availability for a social media application used by customers in multiple remote geographic locations around the world, the organization should implement the following: B. A load-balanced group of reverse proxy servers with SSL acceleration.

AnarckiiOption: C
Dec 27, 2023

Best Choice: C. A CDN with the origin set to its datacenter Explanation: CDNs provide low-latency access by caching content closer to end-users. SSL offloading is often supported by CDNs at the edge. CDNs inherently provide protection against DoS and DDoS attacks with their distributed infrastructure. CDNs contribute to high availability by distributing content across multiple edge servers.

7d84bc7Option: C
Mar 29, 2024

"used by customers in multiple remote geographic locations around the world"

surfugandaOption: B
Apr 5, 2024

[correct]B. A load-balanced group of reverse proxy servers with SSL acceleration: Low latency: YES SSL offloading: YES DoS and DDoS protection: YES High availability: YES [incorrect]C. A CDN with the origin set to its datacenter: Low latency: When a request is made for content that is not cached at an edge location of the CDN, the CDN fetches the content from the organization's datacenter, which serves as the origin server. This means that the content is pulled from the primary storage location, processed if necessary (e.g., for dynamic content), and then delivered to the user through the CDN's network. Since origin is set to datacenter datacenter, users may experience higher latency compared to when content is served directly from nearby edge servers. Thus this option has potential to FAIL to meet the low latency requirement. SSL offloading: YES DoS and DDoS protection: YES High availability: YES

23169fdOption: C
Jul 12, 2024

Low Latency: CDNs have distributed edge servers located in various geographic locations around the world. This ensures that content is delivered from a server that is geographically close to the user, significantly reducing latency and improving the user experience. SSL Offloading: Many CDNs offer SSL/TLS offloading, which offloads the encryption and decryption tasks from the origin server, thus improving the performance of the web servers at the datacenter. Protection against DoS and DDoS Attacks: CDNs have built-in protections against DoS and DDoS attacks. They can absorb and mitigate attack traffic before it reaches the origin server, providing an additional layer of security. High Availability: CDNs provide high availability by distributing content across multiple servers. In case of server failure or high traffic, the CDN can route requests to other available servers, ensuring continuous availability of the application.