CCSP

Question 1

Cloud Service Category Types

Answer 1

• IaaS – Infrastructure as a Service
• PaaS – Platform as a Service
• SaaS – Software as a Service

Question 2

CSA

Answer 2

Cloud Service Auditor (CSA) 
	Operations Manager
	Deployment Manager
	Service Manager
	Business Manager

Question 3

CSB

Answer 3

Cloud Service Broker (CSB) 
	Customer Support and Care Representative
	Inter-cloud provider
	Security and Risk Manager
	Network Provider

Question 4

CSP

Answer 4

Cloud Service Provider (CSP) – Provides cloud environment

Question 5

CSC

Answer 5

Cloud Service Customer (CSC)
o	Service User
o	Service Administrator
o	Service business Manager
o	Service Integrator

Question 6

CSN

Answer 6

Cloud Service Partner (CSN)

Question 7

Cloud Computing Characteristics

Answer 7

• Broad Network Access
• On-demand Self-service
• Multi-tenant Capability (client data isolation)
• Resource Pooling
• Rapid Elasticity and Scalability
• Measured service

Question 8

Infrastructural Building Block

Answer 8

Compute
o	Physical Hosts
o	 Virtual Machines
Network
o	Physical Transport
o	Virtual LANs – data isolation 
Storage
o	Physical Volumes
o	Shared storage pools
Services
o	Backend database structure – clusters and redundancy

Question 9

SAML

Answer 9

Security Assertion Mark-up Language - used for active directory encryption (tickets)

Question 10

Cryptographic Erase (CE)

Answer 10

The process of knowingly erasing the media that stored encryption/decryption keys, it is effectively sanitized because there is no way to decrypt the data without the keys.

Question 11

802.1x

Answer 11

A security standard that supports RADIUS authentication server, VPN concentrators, Network switches, and Wireless Access Points.

Question 12

Rogue Virtual Machine

Answer 12

A virtual machine that’s not being controlled or managed, usually by users either knowingly or unknowingly

Question 13

VLAN Hopping

Answer 13

VLAN hopping to other VLANs, usually maliciously, as in a VLAN Hopping Attack

Question 14

Asset Hardening

Answer 14

• Patching
• Disabling unnecessary software
• Ensuring firewall/antivirus installed

for VMs, always harden the hypervisor host and guest OS

Question 15

Hypervisor

Answer 15

A hypervisor is a virtual machine monitor (VMM) that creates and runs virtual machines. A computer on which a hypervisor runs is called a host machine, and each virtual machine is called a guest machine.

Question 16

Cloud Business Continuity (BC) considerations

Answer 16

• Incident reporting
• multi-location backup
• service uptime
• service load balancing and service response time
• Availability of CSP Business Impact Analysis (BIA) to cloud consumers

Question 17

Clustering

Answer 17

building in backup servers for failover purposes

Question 18

Distributed services

Answer 18

Cloud applications that are compatible with all cloud environments, located in multiple databases, and available in different regions

Question 19

Vendor Lock-In

Answer 19

Customer is unable to move cloud services from one vendor to another vendor because their product or services cannot easily transition to a competitor cloud service provider.

Question 20

Persistent Storage

Answer 20

Data the resides on physical servers:

• Block storage - always available
• Object storage - binary storage

Question 21

Apache Cloud Stack

Answer 21

An open source cloud computing and IaaS platform developed to help make creating, deploying, and managing cloud services easier by providing a complete “stack” of features and components for cloud environments.

Question 22

Cloud App (Cloud Application)

Answer 22

The phrase used to describe a software application accessed via the Internet; may include an agent or applet installed locally on the user’s device.

Question 23

Cloud Computing

Answer 23

A type of computing, compared to grid computing, that relies on ensuring computing resources rather than having local server or personal devices to handle applications. The goal of cloud computing is to apply traditional supercomputing or high-performance computing power, normally used by military and research facilities, to perform tens of trillions of computations per second and consumer-oriented applications such as financial portfolios, or even to deliver personalized information or power immersive computer games.

Question 24

Cloud Computing Reseller

Answer 24

A company that purchases hosting services from a cloud server hosting or computing provider and then resells them to its own customers.

Question 25

Cloud Portability

Answer 25

The ability to move applications and associated data between one cloud provider and another, or between legacy and cloud environments.

Question 26

Eucalyptus

Answer 26

An open source cloud computing and Infrastructure as a Service (IaaS) platform for enabling private clouds.

Question 27

FIPS 140-2

Answer 27

A NIST document that lists accredited and outmoded cryptosystems.

Question 28

Managed Service Provider

Answer 28

An IT service where the customer dictates both the technology and operational procedures, and an external party executes administration and operational support according to a contract.

Question 29

Multi-Tenant

Answer 29

Multiple customers using the same public cloud (and often the same hosts, in a virtualized cloud environment).

Question 30

Trusted Cloud Initiative (TCI) Reference Model

Answer 30

The TCI reference model is a guide for cloud providers, allowing them to create a holistic architecture (including the physical facility of the datacenter, the logical layout of the network, and the processes necessary to utilize both) that cloud customers can purchase and use with comfort and confidence.

Question 31

Vendor Lock-out

Answer 31

Vendor lock-out occurs when a customer is unable to recover or access their own data due to the cloud provider going into bankruptcy or otherwise leaving the market.

Question 32

Virtualization

Answer 32

Creating a virtual (a logical vs. a physical) version of something, including virtual computer hardware platforms, operating systems, storage devices, and computer network resources. Computer hardware virtualization is a way of improving overall efficiency. It involves CPUs that provide support for virtualization in hardware, and other hardware components that help improve the performance of a guest environment.