ExamTopics Logo
Mail Us[email protected]
Menu
Amazon Discussions
exam questions

Exam AWS Certified Solutions Architect - Professional SAP-C02 All Questions

View all questions & answers for the AWS Certified Solutions Architect - Professional SAP-C02 exam
Go to Exam

Exam AWS Certified Solutions Architect - Professional SAP-C02 topic 1 question 500 discussion

Exam question from Amazon's AWS Certified Solutions Architect - Professional SAP-C02
Question #: 500
Topic #: 1
[All AWS Certified Solutions Architect - Professional SAP-C02 Questions]

A company runs an ecommerce web application on AWS. The web application is hosted as a static website on Amazon S3 with Amazon CloudFront for content delivery. An Amazon API
Gateway API invokes AWS Lambda functions to handle user requests and order processing for the web application The Lambda functions store data in an Amazon ROS for MySQL DB cluster that uses On-Demand instances. The DB cluster usage has been consistent in the past 12 months.

Recently, the website has experienced SQL injection and web exploit attempts. Customers also report that order processing time has increased during periods of peak usage. During these periods, the Lambda functions often have cold starts. As the company grows, the company needs to ensure scalability and low-latency access during traffic peaks. The company also must optimize the database costs and add protection against the SQL injection and web exploit attempts.

Which solution will meet these requirements?

  • A. Configure the Lambda functions to have an increased timeout value during peak periods. Use RDS Reserved Instances for the database. Use CloudFront and subscribe to AWS Shield Advanced to protect against the SQL injection and web exploit attempts.
  • B. Increase the memory of the Lambda functions, Transition to Amazon Redshift for the database. Integrate Amazon Inspector with CloudFront to protect against the SQL injection and web exploit attempts.
  • C. Use Lambda functions with provisioned concurrency for compute during peak periods, Transition to Amazon Aurora Serverless for the database. Use CloudFront and subscribe to AWS Shield Advanced to protect against the SQL injection and web exploit attempts.
  • D. Use Lambda functions with provisioned concurrency for compute during peak periods. Use RDS Reserved Instances for the database. Integrate AWS WAF with CloudFront to protect against the SQL injection and web exploit attempts.
Show Suggested Answer Hide Answer
Suggested Answer: D 🗳️
by zapper1234 at June 25, 2024, 8:35 p.m.
Disclaimers:
  • - ExamTopics website is not related to, affiliated with, endorsed or authorized by Amazon.
  • - Trademarks, certification & product names are used for reference only and belong to Amazon.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
ebbff63
Highly Voted 10 months ago
Selected Answer: D
D - AWS WAF for SQL injection and web exploit protection
upvoted 9 times
...
nimbus_00
Most Recent 4 months, 3 weeks ago
Selected Answer: D
"DB cluster that uses On-Demand instances. The DB cluster usage has been consistent in the past 12 months." suggests RDS Reserved Instances for the database. https://docs.aws.amazon.com/AmazonRDS/latest/UserGuide/USER_WorkingWithReservedDBInstances.html
upvoted 1 times
...
0b43291
5 months, 1 week ago
Selected Answer: D
By leveraging Lambda functions with provisioned concurrency, RDS Reserved Instances, and AWS WAF with CloudFront, Option D provides a comprehensive solution addressing low-latency access during traffic peaks, optimizing database costs, and adding protection against SQL injection and web exploit attempts, meeting all stated requirements. Option C: While Aurora Serverless addresses database scalability and cost, AWS Shield Advanced may be unnecessary if SQL injection and web exploits are the primary concern, which AWS WAF can mitigate.
upvoted 1 times
...
JoeTromundo
6 months, 2 weeks ago
Selected Answer: D
It's D: Provisioned Concurrency ensures that Lambda functions are pre-warmed and ready to handle requests instantly, which reduces the "cold start" problem. RDS Reserved Instances for Amazon RDS will help reduce the database cost. Since the workload has been consistent over the past 12 months, Reserved Instances provide a cost-effective solution by offering significant discounts compared to On-Demand pricing. AWS WAF protects the application from web exploits such as SQL injection and cross-site scripting (XSS).
upvoted 2 times
...
wbedair
7 months ago
Selected Answer: D
waf for sql injection and web exploits
upvoted 2 times
...
wbedair
7 months, 1 week ago
Selected Answer: C
expanding business needs serverless database so Aurora in option C is the best
upvoted 1 times
wbedair
7 months, 1 week ago
It looksxlike I was looking at different question as no mention in the question to use serverless database. I will go with D
upvoted 1 times
...
...
Isaac_lin
8 months, 1 week ago
using shield advanced will enable the basic features of WAF for free as well, so C
upvoted 1 times
Daniel76
7 months, 2 weeks ago
Shield Advanced is not free, and it's used against DDoS, not SQL injection.
upvoted 1 times
...
...
asquared16
8 months, 3 weeks ago
Selected Answer: C
Regardless of the diabolical wording of the question. Forget about whether it's WAF or Shield Advance, it's 'C' because it drills down to saying "the company is now expecting growth and needs to ensure scalability", this pushes us to Aurora Serverless. DB usage was consistent last year, it no longer is.
upvoted 3 times
...
vip2
9 months, 3 weeks ago
Selected Answer: D
AWS WAF instead of AWS Shield
upvoted 3 times
...
gfhbox0083
9 months, 3 weeks ago
D, for sure. To protect against SQL injection attacks, AWS WAF (Web Application Firewall) is the appropriate service to use, not AWS Shield Advanced.
upvoted 2 times
...
mifune
10 months ago
Selected Answer: C
Lambda functions with provisioned concurrency for compute during peak periods + Aurora Serverless + AWS Shield Advanced, I don't see any better choice. Answer C.
upvoted 2 times
...
zapper1234
10 months, 1 week ago
C - using Lambda concuraancy with Aurora Serverless solves a bunch of the issues
upvoted 1 times
toma
10 months ago
it is D, no need for AWS Shield Advanced, WAF is sufficient.
upvoted 2 times
kupo777
10 months ago
it is D, AWS Shield Advanced is not required; AWS WAF can be used to protect against common web exploits such as SQL injection and cross-site scripting (XSS) attacks.
upvoted 2 times
...
...
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago