Prev Question
Next Question

You are creating an application which stores extremely sensitive financial information. All information in the system must
be encrypted at rest and in transit. Which of these is a violation of this policy?

A.
ELB SSL termination.

B.
ELB Using Proxy Protocol v1.

C.
CloudFront Viewer Protocol Policy set to HTTPS redirection.

D.
Telling S3 to use AES256 on the server-side.

Explanation:
Terminating SSL terminates the security of a connection over HTTP, removing the S for “Secure” in HTTPS. This violates
the “encryption in transit” requirement in the scenario.
http://docs.aws.amazon.com/ElasticLoadBalancing/latest/DeveloperGuide/elb-listener-config.html

Prev Question
Next Question

Leave a Reply

Your email address will not be published. Required fields are marked *