A multinational company has deployed its web application in AWS Infrastructure.
This application is critical for the company and needs to secure from any type of DDOS attacks.
Security Head is looking for global DDOS trends across AWS resources to further strengthen security guidelines within the company & protect resources from DDOS attacks. Which of the following can be used for monitoring DDOS threats?
Click on the arrows to vote for the correct answer
A. B. C. D.Correct Answer: D.
AWS Shield's global threat dashboard can be used to view DDOS trends for AWS resources like Amazon EC2, Amazon CloudFront, Elastic Load Balancing, and Amazon Route 53
This dashboard provides a near real-time summary of events occurring globally within AWS infrastructure.
Option A is incorrect as using AWS Firewall Manager, we can centrally monitor DDOS attacks on all the resources launched within the account.
It will not provide information about trends for DDOS threats for Amazon resources.
Option B is incorrect as these reports are only available post subscribing to AWS Shield Advanced.
Option C is incorrect as subscribing to SNS topics for global DDOS trends is not a valid option.
For more information on AWS Shield, refer to the following URL,
https://docs.aws.amazon.com/waf/latest/developerguide/using-ddos-reports.htmlThe correct answer to the question is D. Use AWS Shield global threat dashboard to view near real-time trends for DDOS threats for Amazon resources.
AWS Shield is a managed DDoS (Distributed Denial of Service) protection service that safeguards web applications running on AWS. It provides automatic mitigation of DDoS attacks, minimizing application downtime and latency. AWS Shield Standard is available to all AWS customers at no extra cost. AWS Shield Advanced is an additional paid service that provides additional features such as 24/7 support, increased protection from DDoS attacks, and integration with AWS WAF (Web Application Firewall).
The AWS Shield global threat dashboard is a tool provided by AWS Shield Advanced that displays real-time and historical DDoS attack trends across all of your protected resources in all AWS regions. It provides a centralized location for monitoring DDoS attacks on your AWS infrastructure and helps you to quickly identify patterns and trends in DDoS attack activity. The dashboard also provides recommendations for additional protection measures that you can take to further secure your resources against DDoS attacks.
Option A, using AWS Firewall Manager to download real-time metric reports for DDoS global trends for Amazon resources, is incorrect because AWS Firewall Manager is not a DDoS protection service. It is a service that allows you to centrally configure and manage AWS WAF rules and AWS Shield Advanced protections across multiple accounts and resources.
Option B, using AWS Shield to download real-time metric reports for DDoS global trends for Amazon resources, is incorrect because while AWS Shield provides DDoS protection, it does not provide a global threat dashboard.
Option C, using Amazon SNS to subscribe to global DDoS trends topics for AWS resources, is incorrect because Amazon SNS is a messaging service that allows you to send and receive messages between AWS services and other endpoints, such as email addresses or mobile devices. It does not provide DDoS protection or monitoring.