{"id":78,"date":"2021-01-04T08:09:19","date_gmt":"2021-01-04T08:09:19","guid":{"rendered":"https:\/\/exampracticetests.com\/aws\/Security-Specialty_SCS-C01\/aws-certified-security-specialty-scs-c01-question071\/"},"modified":"2021-01-04T08:09:19","modified_gmt":"2021-01-04T08:09:19","slug":"aws-certified-security-specialty-scs-c01-question071","status":"publish","type":"post","link":"https:\/\/exampracticetests.com\/aws\/Security-Specialty_SCS-C01\/aws-certified-security-specialty-scs-c01-question071\/","title":{"rendered":"AWS Certified Security – Specialty SCS-C01 – Question071"},"content":{"rendered":"
A Security Engineer must add additional protection to a legacy web application by adding the following HTTP security headers:
\n-Content Security-Policy
\n-X-Frame-Options
\n-X-XSS-Protection
\nThe Engineer does not have access to the source code of the legacy web application. Which of the following approaches would meet this requirement?

A.<\/strong> Configure an Amazon Route 53 routing policy to send all web traffic that does not include the required headers to a black hole.
B.<\/strong> Implement an AWS Lambda@Edge origin response function that inserts the required headers.
C.<\/strong> Migrate the legacy application to an Amazon S3 static website and front it with an Amazon CloudFront distribution.
D.<\/strong> Construct an AWS WAF rule to replace existing HTTP headers with the required security headers by using regular expressions.<\/div>\n

<\/p>\n