0
0
AWScloud~5 mins

RDS security (encryption, security groups) in AWS - Cheat Sheet & Quick Revision

Choose your learning style9 modes available
LearnWhyDeepVisualTryChallengeProjectRecallTime
Recall & Review
beginner
What is encryption at rest in Amazon RDS?
Encryption at rest means that the data stored on disk, including backups and snapshots, is encrypted to protect it from unauthorized access.
Click to reveal answer
beginner
What role do security groups play in RDS security?
Security groups act like virtual firewalls that control which network traffic can reach your RDS database instances.
Click to reveal answer
intermediate
How do you enable encryption for an RDS instance?
You enable encryption when creating the RDS instance by selecting the encryption option. It cannot be enabled later on an existing instance.
Click to reveal answer
beginner
Can security groups restrict access by IP address?
Yes, security groups can allow or block access based on IP addresses or ranges, controlling who can connect to the RDS instance.
Click to reveal answer
intermediate
Why is it important to use both encryption and security groups together for RDS?
Encryption protects data stored on disk, while security groups protect the database from unauthorized network access. Using both provides strong overall security.
Click to reveal answer
What does encryption at rest protect in an RDS instance?
AData stored on disk including backups
BData only during transfer
CUser passwords only
DNetwork traffic
When can you enable encryption on an RDS instance?
AAt any time after creation
BOnly after backups are taken
COnly during instance creation
DOnly for read replicas
What is the main purpose of a security group in RDS?
ABackup the database
BEncrypt data on disk
CManage database users
DControl network access to the database
Can security groups restrict access based on IP addresses?
AYes, they can allow or block specific IPs
BNo, they only control ports
CNo, they only control protocols
DYes, but only for IPv6
Why combine encryption and security groups for RDS security?
AThey are unrelated features
BEncryption protects data; security groups control access
CSecurity groups backup data; encryption controls access
DBoth encrypt data twice
Explain how encryption and security groups work together to secure an RDS instance.
Think about protecting data and controlling who can reach it.
You got /3 concepts.
    Describe the steps to secure an RDS instance using encryption and security groups.
    Consider what you do when setting up the database and its network rules.
    You got /3 concepts.