Exam4Training

Which of the following is needed to meet the objective?

A security engineer is installing a WAF to protect the company’s website from malicious web requests over SSL.

Which of the following is needed to meet the objective?
A . A reverse proxy
B . A decryption certificate
C . A split-tunnel VPN
D . Load-balanced servers

Answer: B

Explanation:

By deploying a WAF in front of a web application, a shield is placed between the web application and the Internet. While a proxy server protects a client machine’s identity by using an intermediary, a WAF is a type of reverse-proxy, protecting the server from exposure by having clients pass through the WAF before reaching the server.

A WAF operates through a set of rules often called policies. These policies aim to protect against vulnerabilities in the application by filtering out malicious traffic. The value of a WAF comes in part from the speed and ease with which policy modification can be implemented, allowing for faster response to varying attack vectors; during a DDoS attack, rate limiting can be quickly implemented by modifying WAF policies.

Latest SY0-501 Dumps Valid Version with 1130 Q&As

Latest And Valid Q&A | Instant Download | Once Fail, Full Refund

Exit mobile version