SecAppSol Pvt. Ltd. is a cloud software and application development company located in Louisville, Kentucky. The security features provided by its previous cloud service provider was not satisfactory, and in 2012, the organization became a victim of eavesdropping. Therefore, SecAppSol Pvt. Ltd.
changed its cloud service provider and adopted AWS cloud-based services owing to its robust and
cost-effective security features.
How does SecAppSol Pvt. Ltd.’s security team encrypt the traffic
between the load balancer and client that initiate
SSL or TLS sessions?
A . By enabling Amazon GuardDuty
B . By enabling HTTPS listener
C . By enabling Cloud Identity Aware Proxy
D . By enabling RADIUS Authentication
Answer: B
Explanation:
To encrypt the traffic between the load balancer and clients that initiate SSL or TLS sessions, SecAppSol Pvt. Ltd.’s security team would enable an HTTPS listener on their load balancer. This is a common method used in AWS to secure communication.
Here’s how it works:
HTTPS Listener Configuration: The security team configures the load balancer with an HTTPS listener, which listens for incoming SSL or TLS connections on a specified port (usually port 443).
SSL/TLS Certificates: They deploy SSL/TLS certificates on the load balancer. These certificates are used to establish a secure connection and encrypt the traffic.
Secure Communication: When a client initiates a session, the HTTPS listener uses the SSL/TLS certificate to perform a handshake, establish a secure connection, and encrypt the data in transit.
Backend Encryption: Optionally, the load balancer can also be configured to encrypt traffic to the backend servers, ensuring end-to-end encryption.
Security Policies: The security team sets security policies on the load balancer to define the ciphers and protocols used for SSL/TLS, further enhancing security.
Reference: AWS documentation on configuring end-to-end encryption in a load-balanced environment, which includes setting up an HTTPS listener1.
AWS documentation on creating an HTTPS listener for your Application Load Balancer, detailing the process and requirements2.
Latest 312-40 Dumps Valid Version with 125 Q&As
Latest And Valid Q&A | Instant Download | Once Fail, Full Refund