You have a set of EC2 Instances that are deployed in a VPC. An important application is hosted on these instances and it is essential to keep the application secure. There are some security issues that keep on recurring in the application and you need to build a system that can inspect the network packets, detect malicious activity, and discover policy violations on the application. Which of the following can help you to achieve this?

Answer options:

A.Use VPC Flow logs.
B.Use an IDS.
C.Use CloudTrail.
D.Use CloudWatch Logs.

Answer – B
Here you will need a custom Intrusion Detection system to detect malicious activities and policy violations.
Options A, C and D are incorrect since these solutions cannot provide the required monitoring or detection.
For more information on IDS, please refer to the below URL
https://aws.amazon.com/mp/scenarios/security/ids/