23 Nov Practice Test Question-DDoS Mitigation
Preparing for your next security certification exam? After trying your hand at this practice test question, join the FREE CertMike Study Group for the CISSP, Security+, CySA+, PenTest+, CISM+ or SSCP certification to receive new questions each week. You’ll also receive free access to my customized study strategies.
Cameron is worried about distributed denial of service attacks against his company’s primary web application. Which of the following options will provide the most resilience against large-scale DDoS attacks?
A. Implement a CDN
B. Increase the number of servers in the web application server cluster
C. Contract for DDoS mitigation services via the company’s ISP
D. Increase the amount of bandwidth available from one or more ISPs
Correct Answer: A
A content delivery network, or CDN run by a major provider can handle large-scale DDoS attacks more easily than any of the other solutions. Using DDoS mitigation techniques via an ISP is the next most useful capability, followed by both increases in bandwidth and increases in the number of servers in the web application cluster.