ExamTopics Logo
Mail Us[email protected]
Menu
Amazon Discussions
exam questions

Exam AWS Certified Solutions Architect - Associate SAA-C03 All Questions

View all questions & answers for the AWS Certified Solutions Architect - Associate SAA-C03 exam
Go to Exam

Exam AWS Certified Solutions Architect - Associate SAA-C03 topic 1 question 480 discussion

Exam question from Amazon's AWS Certified Solutions Architect - Associate SAA-C03
Question #: 480
Topic #: 1
[All AWS Certified Solutions Architect - Associate SAA-C03 Questions]

A business application is hosted on Amazon EC2 and uses Amazon S3 for encrypted object storage. The chief information security officer has directed that no application traffic between the two services should traverse the public internet.

Which capability should the solutions architect use to meet the compliance requirements?

  • A. AWS Key Management Service (AWS KMS)
  • B. VPC endpoint
  • C. Private subnet
  • D. Virtual private gateway
Show Suggested Answer Hide Answer
Suggested Answer: B 🗳️
by cloudenthusiast at May 18, 2023, 7:10 p.m.
Disclaimers:
  • - ExamTopics website is not related to, affiliated with, endorsed or authorized by Amazon.
  • - Trademarks, certification & product names are used for reference only and belong to Amazon.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
cloudenthusiast
Highly Voted 11 months, 1 week ago
Selected Answer: B
A VPC endpoint enables you to privately access AWS services without requiring internet gateways, NAT gateways, VPN connections, or AWS Direct Connect connections. It allows you to connect your VPC directly to supported AWS services, such as Amazon S3, over a private connection within the AWS network. By creating a VPC endpoint for Amazon S3, the traffic between your EC2 instances and S3 will stay within the AWS network and won't traverse the public internet. This provides a more secure and compliant solution, as the data transfer remains within the private network boundaries.
upvoted 10 times
...
Tendu
Most Recent 2 months ago
Selected Answer: B
Answer B -VPC Endpoint
upvoted 1 times
...
TariqKipkemei
10 months, 1 week ago
Selected Answer: B
Prevent traffic from traversing the internet = VPC endpoint for S3.
upvoted 4 times
...
antropaws
10 months, 3 weeks ago
Selected Answer: B
B until proven contrary.
upvoted 3 times
...
handsonlabsaws
10 months, 3 weeks ago
Selected Answer: B
B for sure
upvoted 3 times
...
Blingy
11 months ago
BBBBBBBBB
upvoted 2 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago