The Payment Card Industry Data Security Standard (PCI DSS) merchants that handle credit card data must use strong cryptography. These merchants must also use security protocols to protect sensitive data during transmission over public networks. You are migrating your PCI DSS application from on-premises SSL appliance and Apache to a VPC behind Amazon CloudFront. How should you configure CloudFront to meet this requirement?
A) Configure the CloudFront Cache Behavior to require HTTPS and the CloudFront Origin's Protocol Policy to 'Match Viewer'.
B) Configure the CloudFront Cache Behavior to allow TCP connections and to forward all requests to the origin without TLS termination at the edge.
C) Configure the CloudFront Cache Behavior to require HTTPS and to forward requests to the origin via AWS Direct Connect.
D) Configure the CloudFront Cache Behavior to redirect HTTP requests to HTTPS and to forward request to the origin via the Amazon private network.
Correct Answer:
Verified
Q30: Your security team implements a host-based firewall
Q31: Your company operates a single AWS account.
Q32: A network engineer is managing two AWS
Q33: An organization will be extending its existing
Q34: Your organization has a newly installed 1-Gbps
Q36: Your company maintains an Amazon Route 53
Q37: You are configuring a virtual interface for
Q38: A company is about to migrate an
Q39: A corporate network routing table contains 624
Q40: A department in your company has created
Unlock this Answer For Free Now!
View this answer and more for free by performing one of the following actions
Scan the QR code to install the App and get 2 free unlocks
Unlock quizzes for free by uploading documents