An organization has a public-facing API that is hosted on a cloud provider. The API performs slowly at times. Which of the following technologies should the cloud administrator apply to provide speed acceleration and a secure connection?
A seems to be right
A WAF helps both with speed acceleration and security:
Improves API performance by caching responses and optimizing requests.
Protects against attacks (e.g., DDoS, SQL injection, XSS).
Reduces latency by blocking malicious traffic before it reaches the API.
A. WAF (Web Application Firewall)
Explanation:
WAF (Web Application Firewall):
Speed Acceleration: Many WAFs include features such as caching, load balancing, and content optimization, which can help improve the performance of web applications and APIs.
Secure Connection: WAFs also provide security by protecting against common web threats like SQL injection, cross-site scripting (XSS), and DDoS attacks. They help ensure that only legitimate traffic reaches the API, reducing the load caused by malicious traffic.
By implementing SSL/TLS, the cloud administrator can establish a secure connection for the public-facing API while maintaining good performance. Additionally, exploring caching, code optimization, and potentially a CDN can further enhance API performance and user experience.
SSL (Secure Sockets Layer): SSL/TLS is a cryptographic protocol that provides secure and encrypted communication between a client and a server. It is commonly used to secure web applications and APIs. By implementing SSL/TLS, you ensure that data transmitted between clients and your API is encrypted, enhancing security.
Additionally, SSL/TLS can provide some level of performance improvement through techniques like TLS session resumption, which reduces the overhead of establishing secure connections for subsequent requests. It also offers protection against man-in-the-middle attacks and data interception, further enhancing the security of your API.
The other options mentioned, such as WAF (Web Application Firewall), EDR (Endpoint Detection and Response), IDS (Intrusion Detection System), and HIPS (Host-based Intrusion Prevention System), are security technologies but are not specifically designed for speed acceleration or securing the communication channel in the same way that SSL/TLS does. These technologies focus on threat detection and prevention rather than encryption and secure communication.
SSL is a cryptographic protocol that provides secure communication over a network, such as the internet. It ensures that data transmitted between a client (such as a user's browser) and a server (such as the API) is encrypted and protected from unauthorized access or interception.SL acceleration techniques, such as hardware acceleration or SSL offloading, can improve the performance of the AP
A WAF is a security technology that filters and monitors HTTP/HTTPS traffic to and from a web application, protecting against various attacks. While a WAF can enhance the security of the API, it does not directly provide speed acceleration or a secure connection.
upvoted 1 times
...
...
This section is not available anymore. Please use the main Exam Page.CV0-003 Exam Questions
Log in to ExamTopics
Sign in:
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
JohnMangley
Highly Voted 2 years, 3 months agoBigM
Most Recent 2 months ago54a6b25
9 months, 1 week agoCXSSP
11 months agoPongsathorn
1 year, 7 months agoPongsathorn
1 year, 7 months agoROCompTIA
1 year, 10 months agoSecPlus2022
1 year, 10 months agoBrianhealey136
2 years, 3 months agoROCompTIA
1 year, 10 months ago