Why do blind spots occur in a virtualized environment, where network-based security controls may not be able to monitor certain types of traffic ?
A. The network stack is out of alignment
B. Clouds do not occur in networked environments
C. Traffic is undetectable in virtual machines
D. Virtual machines may communicate with each other over a virtual network all on the same host rather than a physical network between servers
E. None of the above
When associating the functions to an actor, what is used to restrict a list of possible actions dowr to allowed actions?
A. Permissions
B. Controls
C. Location
D. Functions
E. Actions
Which type of application security testing should incorporate checks on API calls to the cloud service?
A. Dynamic Application Security Testing (DAST)
B. Unit Testing
C. Functional Testing
D. Static Application Security Testing (SAST)
E. All of the above
Which facet is focused on protecting the management plane components, such as web and API servers, from attacks?
A. Authorization and entitlements
B. Logging and alerting
C. Customer authentication
D. Perimeter security
E. External authentication
In a cloud environment, how can you best determine data/information security risks and potential controls?
A. understand the cloud storage architecture in use
B. run a search on user data le
C. encrypt everything
D. identify the major operating system(s)
E. understand the related regulatory requirements
What is it called when a customer's information and/or processes are compromised by the actions of another customer in a multi-tenancy environment?
A. Information leakage
B. Data loss
C. Failure to thrive
D. Relationship failure
E. Isolation failure
What are the three main aspects for data security controls?
A. Controlling, monitoring, and managing
B. Controlling, encrypting, and managing
C. Managing, securing, and enforcing
D. Gating, encrypting, and backing up
E. Controlling, protecting, and enforcing
Which SDP component is used for authentication and authorization?
A. Client
B. Controller
C. Access Manager
D. Gateway
E. Firewall
While the cloud consumer is responsible for implementing the security controls, the cloud provider implements the security of the workload.
A. True
B. False
Which of the following items is one of the major regulatory compliance problems associated with cloud environments?
A. The lowered cost of cloud services may violate computer service embargoes
B. The advent of applications as a service may violate software licensing agreements
C. Transparency is improved through consolidated and centralized management platforms
D. The distributed nature of cloud storage may result in regulated information being sent across geographical boundaries
E. The multi-tenancy model allows cloud customers to unfairly share hard drives that would otherwise have been purchased individually
Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only Cloud Security Alliance exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your CCSK exam preparations and Cloud Security Alliance certification application, do not hesitate to visit our Vcedump.com to find your solutions here.