Exam FCP_WCS_AD-7.4 topic 1 question 15 discussion

Study guide page 111 Both Fortiweb cloud and AWS WAF with Fortinet managed rules supports "Meet PCI 6.6 compliance" and "SSL inspection". There is no malware protection in AWS WAF partner rules because there is no engine to protect malware. FortiWeb Cloud, on the other hand, extends beyond signature-based web protection and can inspect the traffic for malware.

C. SSL inspection is a requirement. FortiWeb Cloud offers SSL inspection capabilities, allowing it to inspect encrypted traffic (HTTPS) and provide deeper protection for web applications. If SSL inspection is a key requirement, FortiWeb Cloud would be preferred over AWS WAF with Fortinet managed rules, as AWS WAF does not natively support SSL decryption and inspection without additional configuration. Here’s why the other options are less relevant: A: WAF signatures are automatically updated by FortiGuard, so manual updates are not required for either solution. B: Both FortiWeb Cloud and AWS WAF with Fortinet managed rules can help meet PCI 6.6 compliance. D: Traffic inspection for malware is typically handled by a security solution beyond just WAF functionality. FortiWeb Cloud provides more advanced protection, but malware inspection is not the primary factor in this comparison.

D. Both offer SSL inspection.

D should be correct. WAF & Forti can do Web Attack Signatures, PCI 6.6 Comp. and SSL Inspection. Study Guide 7.4 Page 11 -> WAF cannot do Antivirus/Antimalware, while FortiWeb can.

Should be C

C should be correct

Explanation: SSL inspection is a requirement: Correct: FortiWeb Cloud provides advanced SSL inspection capabilities, which allow it to decrypt and inspect SSL/TLS traffic to detect threats hidden in encrypted traffic. AWS WAF, on the other hand, typically requires additional configuration or integration with other services to handle SSL inspection effectively.

this answer is SSL inspection, as both options offer PCI 6.6. Compliance.