ExamTopics Logo
Mail Us[email protected]
Menu
Amazon Discussions
exam questions

Exam AWS Certified Solutions Architect - Professional All Questions

View all questions & answers for the AWS Certified Solutions Architect - Professional exam
Go to Exam

Exam AWS Certified Solutions Architect - Professional topic 1 question 271 discussion

Exam question from Amazon's AWS Certified Solutions Architect - Professional
Question #: 271
Topic #: 1
[All AWS Certified Solutions Architect - Professional Questions]

An organization is setting up their website on AWS. The organization is working on various security measures to be performed on the AWS EC2 instances.
Which of the below mentioned security mechanisms will not help the organization to avoid future data leaks and identify security weaknesses?

  • A. Run penetration testing on AWS with prior approval from Amazon.
  • B. Perform SQL injection for application testing.
  • C. Perform a Code Check for any memory leaks.
  • D. Perform a hardening test on the AWS instance.
Show Suggested Answer Hide Answer
Suggested Answer: C 🗳️
AWS security follows the shared security model where the user is as much responsible as Amazon. Since Amazon is a public cloud it is bound to be targeted by hackers. If an organization is planning to host their application on AWS EC2, they should perform the below mentioned security checks as a measure to find any security weakness/data leaks:
Perform penetration testing as performed by attackers to find any vulnerability. The organization must take an approval from AWS before performing penetration testing Perform hardening testing to find if there are any unnecessary ports open Perform SQL injection to find any DB security issues
The code memory checks are generally useful when the organization wants to improve the application performance.
Reference:
http://aws.amazon.com/security/penetration-testing/
by newme at Nov. 30, 2020, 9:51 a.m.
Disclaimers:
  • - ExamTopics website is not related to, affiliated with, endorsed or authorized by Amazon.
  • - Trademarks, certification & product names are used for reference only and belong to Amazon.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
hobokabobo
2 years, 5 months ago
A memory leak means that the application does not free memory that is supposed to be freed. Ultematly the result is either a denial of service because of resource exhaustion: ram is filled up and/or old data that is supposed to be there anymore can be accessed again and expose confidential data. In combination with other security issues a full memory may give an attacker the time to win a race. A DOS (in this case resulting from a memory leak ) opens the possibility for spoofing attacks(fake some response answer does not work if the real resource may answer faster ). ... whole books are written about security issues arising from memory leaks... So i beg to differ: while other security measures are fine, just because they are not mentioned in list of measurements, it does not mean that checking memory leaks makes no sense.
upvoted 1 times
hobokabobo
2 years, 5 months ago
As an add on: yes the code needs checks for memory weaknesses. It needs those checks in the memory management.
upvoted 1 times
...
...
cldy
3 years, 5 months ago
C correct.
upvoted 1 times
...
JAGUARCODE
3 years, 7 months ago
AWS security follows the shared security model where the user is as much responsible as Amazon. Since Amazon is a public cloud it is bound to be targeted by hackers. If an organization is planning to host their application on AWS EC2, they should perform the below mentioned security checks as a measure to find any security weakness/data leaks: - Perform penetration testing as performed by attackers to find any vulnerability. - The organization must take an approval from AWS before performing penetration testing - Perform hardening testing to find if there are any unnecessary ports open - Perform SQL injection to find any DB security issues The code memory checks are generally useful when the organization wants to improve the application performance.
upvoted 2 times
...
newme
3 years, 8 months ago
Memory leak can also lead to security problems, can't it?
upvoted 3 times
consultsk
3 years, 7 months ago
Generally, a memory leak is a performance issue. A few times and induced bugs with the virus can also lead to it. I think these types of questions are induced to confuse. IMO: We should go by the best option 'C'.
upvoted 2 times
...
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel