Securing the Cloud

Question 1

In which cloud service model can the consumer “provision” and “deploy and run”?

SaaS

PaaS

IaaS

Answer 1

IaaS

In the Infrastructure as a Service (IaaS) model, the consumer can “provision” and is able to “deploy and run,” but they still do not “manage or control” the underlying cloud infrastructure

Question 2

Which cloud delivery model is implemented by a single organization, enabling it to be implemented behind a firewall?

Private

Public

Community

Answer 2

Private

A private cloud delivery model is implemented by a single organization, and it can be implemented behind a firewall

Question 3

Which cloud service model provides the consumer with the infrastructure to create applications and host them?

SaaS

PaaS

IaaS

Answer 3

PaaS

In the Platform as a Service (PaaS) model, the consumer has the ability to create applications and host them

Question 4

Which cloud delivery model could be considered a pool of services and resources delivered across the Internet by a cloud provider?

Private

Public

Community

Answer 4

Public

A public delivery model could be considered a pool of services and resources delivered across the Internet by a cloud provider

Question 5

Which cloud service model gives the consumer the ability to use applications provided by the cloud provider over the Internet?

SaaS

PaaS

IaaS

Answer 5

SaaS

In the Software as a Service (SaaS) model, the consumer has the ability to use applications provided by the cloud provider over the Internet

Question 6

Which cloud delivery model has an infrastructure shared by several organizations with shared interests and common IT needs?

Private

Public

Community

Answer 6

Community

A community delivery model has an infrastructure shared by several organizations with shared interests and common IT needs

Question 7

Which cloud delivery model could be considered an amalgamation of other types of delivery models?

Public

Community

Hybrid

Answer 7

Hybrid

The hybrid delivery model can be considered an amalgamation of other types of delivery models

Question 8

With which of the following subscription-based models is security more cost effective than individuals or smaller corporations could ever get on their own?

SECaaS

PaaS

XaaS

Answer 8

SECaaS

Security as a Service (SECaaS) is a subscription-based business model intended to be more cost effective than smaller individuals/corporations could ever get on their own

Question 9

Which of the following are on-premise or cloud-based security policy enforcement points?

Flood guards

VDI/VDEs

Cloud access security brokers

Answer 9

Cloud access security brokers

Cloud access security brokers are on-premise or cloud-based security policy enforcement points

Question 10

Which feature of cloud computing involves dynamically provisioning (or deprovisioning) resources as needed?

Multitenancy

Elasticity

CMDB

Answer 10

Elasticity

Elasticity is a feature of cloud computing that involves dynamically provisioning (or de-provisioning) resources as needed

Question 11

What is the term for restricting an application to a safe/restricted resource area?

Fencing

Securing

Sandboxing

Answer 11

Sandboxing

Sandboxing is the term used for restricting an application to a safe/restricted resource area

Question 12

Which of the following terms implies hosting data from more than one consumer on the same equipment?

Multitenancy

Duplexing

Bastioning

Answer 12

Multitenancy

Multitenancy implies hosting data from more than one consumer on the same equipment

Question 13

When going with a public cloud delivery model, who is accountable for the security and privacy of the outsourced service?

The cloud provider and the organization

The cloud provider

The organization

Answer 13

The organization

Ultimately, the organization is accountable for the choice of public cloud and the security and privacy of the outsourced service

Question 14

When your company purchased a virtual datacenter provider, you inherited a mess. The employees working there had to respond regularly to requests to create virtual machines without the disciplines and controls normally found in the physical world. This resulted in machines being over-provisioned (too much CPU, memory, or disk) and consuming resources long after they were no longer required. What type of problem is this?

VM escape

VM digress

VM sprawl

Answer 14

VM sprawl

VM sprawl can be a result of creating virtual machines without the disciplines and controls of the physical world. This can result in over-provisioning (too much CPU, memory, or disk), or consuming resources after they are no longer required

Question 15

Although a hybrid cloud could be any mixture of cloud delivery models, it is usually a combination of which of the following?

Public and community

Public and private

Private and community

Answer 15

Public and private

While a hybrid cloud could be any mixture of cloud delivery models, it is usually a combination of public and private

Question 16

Which type of hypervisor implementation is known as “bare metal”?

Type I

Type II

Type III

Answer 16

Type I

Type I hypervisor implementations are known as “bare metal.”

Question 17

Which type of hypervisor implementation is known as “hosted”?

Type I

Type II

Type III

Answer 17

Type II

Type II hypervisor implementations are known as “hosted.”

Question 18

When your servers become too busy, you can offload traffic to resources from a cloud provider. This is known as which of the following?

Latency

Cloud bursting

Multitenancy

Answer 18

Cloud bursting

Cloud bursting means that when your servers become too busy, you can offload traffic to resources from a cloud provider

Question 19

What protocol is used by technologies for load balancing/prioritizing traffic?

ESX

QoS

IBJ

Answer 19

QoS

QoS (Quality of Service) makes load balancing/prioritizing possible

Question 20

What is the machine on which virtualization software is running known as?

Node

Workstation

Host

Answer 20

Host

The machine on which virtualization software is running is known as a host, whereas the virtual machines are known as guests