🔥 3-day streak
AWS Certified Advanced Networking - Specialty117 / 141
Question 117 of 141

A financial services company must prove to auditors that all traffic between two applications running in separate AWS accounts never traverses the public internet and is encrypted in transit end-to-end. Application A (consumer) calls Application B (provider) over HTTPS. The provider exposes Application B through an AWS PrivateLink endpoint service backed by a Network Load Balancer. The security team wants the strongest defensible position that the payload remains encrypted along the entire path, including inside AWS. Which design satisfies both the private-path and end-to-end encryption requirements?

Reviewed for accuracy · Report an issueNext question