Home › AWS Solutions Architect Associate › cloudcomputing › securearchitectures › An organisation needs a managed L7 web applicati…
An organisation needs a managed L7 web application firewall to filter SQL injection and cross-site scripting requests in front of an ALB. Which service should they deploy?
AAmazon GuardDuty
BAWS Trusted Advisor
CAmazon Inspector
DAWS WAF (associated with the ALB)
Answer & Solution
Correct answer: D. AWS WAF (associated with the ALB)
AWS WAF inspects HTTP/HTTPS requests at L7 — managed rule groups for OWASP top 10, plus custom rules. GuardDuty does threat detection on logs; Inspector scans for vulnerabilities; Trusted Advisor audits configurations.
Related questions
Which AWS feature lets you store and retrieve secrets (database passwords, API tokens) witWhich AWS service enables an organisation to enforce a baseline of security configuration Which combination implements defense-in-depth network segmentation inside a VPC for a publA team wants short-lived credentials (15 minutes) for an external CI/CD system running OUTA workload needs to encrypt sensitive S3 objects with keys that the customer creates, rotaAn organisation needs to give a partner read-only access to one specific S3 bucket across Which AWS service is purpose-built to find and classify sensitive data (e.g. PII, credit-cWhich AWS service inspects CloudTrail / VPC flow logs / DNS query logs with ML to detect a