🔥 3-day streak
AWS Certified Security - Specialty140 / 157
Question 140 of 157
A financial services company runs a public web application behind an Application Load Balancer (ALB) fronted by CloudFront. During a recent event, the application experienced a large volume of HTTP GET floods that mimicked legitimate user traffic, causing backend exhaustion. The security team has already subscribed to AWS Shield Advanced. They want automatic layer 7 DDoS mitigation with the ability to have the AWS Shield Response Team (SRT) actively engage during attacks, and they want to minimize false positives against real users. Which configuration best meets these requirements?
Reviewed for accuracy · Report an issueNext question