A company is deploying a public-facing global application on AWS using Amazon CloudFront. The application communicates with an external system. A solutions architect needs to ensure the data is secured during end-to-end transit and at rest. Which combination of steps will satisfy these requirements? (Choose three.)
A) Create a public certificate for the required domain in AWS Certificate Manager and deploy it to CloudFront, an Application Load Balancer, and Amazon EC2 instances.
B) Acquire a public certificate from a third-party vendor and deploy it to CloudFront, an Application Load Balancer, and Amazon EC2 instances.
C) Provision Amazon EBS encrypted volumes using AWS KMS and ensure explicit encryption of data when writing to Amazon EBS.
D) Provision Amazon EBS encrypted volumes using AWS KMS.
E) Use SSL or encrypt data while communicating with the external system using a VPN.
F) Communicate with the external system using plaintext and use the VPN to encrypt the data in transit.
Correct Answer:
Verified
Q749: A utility company wants to collect usage
Q750: A company hosts a legacy application that
Q751: A large financial company is deploying applications
Q752: A company's main intranet page has experienced
Q753: A company is currently in the design
Q755: A company recently transformed its legacy infrastructure
Q756: A company is planning a large event
Q757: A company has a Microsoft SQL Server
Q758: A company has an application that generates
Q759: A company is using an existing orchestration
Unlock this Answer For Free Now!
View this answer and more for free by performing one of the following actions
Scan the QR code to install the App and get 2 free unlocks
Unlock quizzes for free by uploading documents