You work at a company that makes use of AWS resources. One of the key security policies is to ensure that all data i encrypted both at rest and in transit.
Which of the following is one of the right ways to implement this?
A . Use S3 SSE and use SSL for data in transit
B . SSL termination on the ELB
C . Enabling Proxy Protocol
D . Enabling sticky sessions on your load balancer
Answer: A
Explanation:
By disabling SSL termination, you are leaving an unsecure connection from the ELB to the back end instances. Hence this means that part of the data transit is not being encrypted.
Option B is incorrect because this would not guarantee complete encryption of data in transit
Option C and D are incorrect because these would not guarantee encryption
For more information on SSL Listeners for your load balancer, please visit the below URL: http://docs.aws.amazon.com/elasticloadbalancine/latest/classic/elb-https-load-balancers.htmll
The correct answer is: Use S3 SSE and use SSL for data in transit Submit your Feedback/Queries to our Experts
Leave a Reply