AWS SECURITY FUNDAMENTALS ANSWERS

 AWS SECURITY FUNDAMENTALS

Which AWS service manages authentication from social sign-in providers for mobile applications?

Amazon Cognito

AWS Secrets Manager

AWS Organizations

AWS IAM

 

Which of the statements below provides an example of how AWS helps customers meet their security and compliance needs?

AWS audits and certifies a customer’s environment.

AWS provides accreditations to customers.

AWS assists customers in integrating their existing control frameworks.

AWS allows customers to automatically achieve compliance.

 

What can be used to troubleshoot network issues, including traffic going into and out of your instances?

AWS Config logs

VPC flow logs

Amazon S3 server access logs

AWS CloudTrail logs

 

 

Which statement below is performed by AWS as an example regarding security OF the cloud?

Enabling encryption on certain Amazon EBS volumes

Enforcing the principle of least privilege for S3 buckets

Performing patch software updates at the OS layer

Decommissioning storage devices according to NIST 800-88

 

Where can you find account activity information on API calls performed via the AWS Management Console or the AWS CLI?

Amazon CloudFront access logs

Amazon CloudWatch Logs

Amazon S3 server access logs

AWS CloudTrail logs

Which feature helps secure your Amazon VPC resources by providing isolation at the subnet level?

VPN connectivity

Network ACLs

Security groups

VPC peering

 

Which AWS services below can be used in tandem to help protect against DDoS attacks? Select THREE.

·        AWS KMS

·        AWS CloudFormation

·        Amazon Route 53

·        AWS Shield

·        Amazon CloudFront

 

Which statement is true regarding the AWS Well-Architected Tool?

It identifies next steps for improvements for a fixed monthly fee.

It automatically remediates vulnerabilities in your workload.

It provides information on potential risks in your workload.

It allows you to annually review your workloads during a predefined time period.

 

Which statement is true when describing your AWS account root user credentials?

They should be used for everyday access.

They should be used for temporary access to your account.

They provide root-level access to your Amazon EC2 instances.

They provide unrestricted access to your AWS account resources.

 

Which AWS service feature helps secure your Amazon VPC resources by providing isolation at the instance level?

Network ACLs

Correctly unselected

Security groups

Correctly selected

VPN connectivity

Correctly unselected

VPC peering

Which AWS services/features can be used to provide data protection at rest and in transit? Select THREE.

       VPN connectivity

       AWS KMS

AWS Certificate Manager

       Network ACLs

MFA authentication

 

How can AWS CloudFormation be used in an incident response solution?

Removing compromised instances from an auto scaling group

Deploying pre-configured instances for forensics analysis

Generating reports of findings for basic forensics

Coordinating different services via a serverless workflow

 

What type of AWS credentials is required to SSH directly into an Amazon EC2 instance?

EC2 key pairs

Correctly selected

AWS account username and password

Correctly unselected

AWS IAM username and password

Correctly unselected

MFA tokens

 

Which statement is true regarding Amazon S3 default (SSE-S3) server-side encryption?

Data is encrypted using a customer-provided AWS KMS key.

Data is encrypted by the client before being sent to Amazon S3.

Amazon S3 generates and manages the encryption keys.

Users must provide the encryption keys.

 

Which statements below correctly describe the AWS global infrastructure? Select TWO.

  • Availability Zones consist of one or more data centers.
  • Regions have geographically dispersed Availability Zones.
  • Edge locations are linked to Availability Zones.
  • An AWS Region consists of only one Availability Zone.
  • All regions have the same number of Availability Zones.

 

Comments

Post a Comment

Popular posts from this blog

Introduction to cyber crimes

Image
  Introduction to cyber crimes The Internet began to use in 1960. In the beginning time, it was not an issue to deal with cyber crimes as it is not accessible to the public. Only the defense systems of a country and the top officials of a country uses the privilege of the internet and the scenario was smooth and good.  In the late 1990s, the internet was more developed and it was the beginning that the public was given access to the internet and the internet started to spread its wings in the public. In every good, there will be a hidden bad thing inside it. The Internet was not different from that as the criminals started using the internet to steal others' personal and sensitive data and even destroy a system in a network. It varies from simple adware to complex viruses that are able to destroy a system and steal all its data.  At the beginning of the 2000’s the cybercrime rate increased and every country‘s law enforcement started to deal with cybercriminals. Packet tracing and p
Read more

INTRO TO CYBER SECURITY

Image
                                      INTRO TO CYBER SECURITY I n our modern world, most people are using cyberspace for many things like shopping, social media, playing games, watching movies, even paying today's bills, which has many potential traps. What is Cyber Security? Security means protecting something from unauthorized or malicious attacks. Here also in the same definition, the term cyber security means protecting the systems such as computers, mobile, or any other devices or the data that is connected to the internet or inside the internet from malicious attacks. What is the need for cyber security? Now we think about why I should be concerned about such types of threats and security, which is related to the internet? it is only for someone who is a software professional or someone who is working in cyberspace.  The answer is no. Every one of us is using the internet and the services that use the internet in all our day-to-day activities like social media, online transac
Read more

How to build a blockchain from scratch with Go

Image
  How to build a blockchain from scratch with Go Blockchains are the underlying technology for many decentralized applications and cryptocurrencies. They are considered one of this generation’s most significant discoveries. Despite being in its early stages, blockchain is already applicable in many industries and is creating new job roles and opportunities for developers, artists, gamers, content writers, and many more. This tutorial aims to teach you how blockchains work by guiding you through building one from scratch with Go. If you have heard of blockchains, but are still confused about how they work, this article is for you. Why build a blockchain with Go? Go provides many unique features and functionalities that make it a good fit for building a blockchain. For example, Go allows you to create highly efficient and performant applications with little effort. Go is also excellent for building applications that require parallelism and concurrency (like blockchains) with its ability
Read more