CH 15 - Cloud Computing & IoT

Question 1

Which of these is not an example of an IoT device?

A. Chromebook
B. iDevices light switch
C. Nest thermostat
D. Amazon Echo

Answer 1

A.
Chromebook

Question 2

Why is REST a common approach to web application design?

A. HTML is stateless.
B. HTTP is stateless.
C. HTML is stateful.
D. HTTP is stateful.

Answer 2

B.
HTTP is stateless.

Question 3

Which of these cloud offerings relies on the customer having the most responsibility?

A. Software as a service
B. Platform as a service
C. Storage as a service
D. Infrastructure as a service

Answer 3

D.
Infrastructure as a service

Question 4

Which of these is less likely to be a common element of cloud‐native design?

A. Microservice architecture
B. Automation
C. Virtual machines
D. Containers

Answer 4

C.
Virtual machines

Question 5

Which of these is not an advantage of using automation in a cloud environment?

A. Consistency
B. Fault tolerance
C. Repeatability
D. Testability

Answer 5

B.
Fault tolerance

Question 6

What common element of a general‐purpose computing platform does an IoT not typically have?

A. Memory
B. Processor
C. External keyboards
D. Programs

Answer 6

C.
External keyboards

Question 7

If you wanted to share documents with someone using a cloud provider, which service would you be most likely to use?

A. Software as a service
B. Platform as a service
C. Storage as a service
D. Infrastructure as a service

Answer 7

C.
Storage as a service

Question 8

What tool could you use to identify IoT devices on a network?

A. Cloudscan
B. nmap
C. Samba
D. Postman

Answer 8

B.
nmap

Question 9

What might you be most likely to use to develop a web application that used a mobile application for the user interface?

A. NoSQL database
B. Data bus
C. Microservices
D. RESTful API

Answer 9

D.
RESTful API

Question 10

Which of these might be a concern with moving services to a cloud provider, away from on‐premise services?

A. Multiple accounts per user
B. Lack of transport layer encryption
C. Inability to implement security controls
D. Lack of access to necessary operating systems and hardware

Answer 10

C.
Inability to implement security controls

Question 11

What modern capability does fog computing support?

A. Cloud‐native design
B. IoT
C. Access management
D. Grid computing

Answer 11

B.
IoT

Question 12

Which of these is an example of grid computing?

A. SETI@home
B. OWASP Top 10
C. Shodan.io
D. Thingful.net

Answer 12

A.
SETI@home

Question 13

What is a botnet an example of?

A. Cloud‐native design
B. RESTful processing
C. Grid computing
D. Fog computing

Answer 13

C.
Grid computing

Question 14

Which of these would be least likely as a vulnerability to serverless web applications?

A. Insecure third‐party components
B. Misconfiguration
C. Access control
D. Command injection

Answer 14

D.
Command injection

Question 15

No matter what cloud‐based service model is being used, which of these is the customer always responsible for?

A. Patching
B. Operating system installation
C. Application management
D. Data

Answer 15

D.
Data

Question 16

What devices would you find at the lowest layer of the Purdue model and, as a result, should be the best protected?

A. Sensors and actuators
B. Programmable logic controllers
C. Remote terminal units
D. Human–computer interfaces

Answer 16

A.
Sensors and actuators

Question 17

What aspect of the Purdue model is considered essential from a security perspective?

A. Human–computer interfaces
B. Segmentation
C. IT and OT interfaces
D. Layered model matches OSI

Answer 17

B.
Segmentation

Question 18

What is a good mitigation against credential compromise in cloud‐based services?

A. Long passwords
B. Using only software as a service
C. Requiring MFA
D. Using serverless functions

Answer 18

C.
Requiring MFA

Question 19

Which of these might be a common problem with a cloud‐based service leading to data exposure?

A. Public buckets
B. Insider threat
C. Selecting the wrong provider
D. Only using software as a service

Answer 19

A.
Public buckets

Question 20

Which of these would not be used to automate deployment of systems into a cloud environment?

A. Templates
B. Ansible
C. PowerShell
D. Containers

Answer 20

D.
Containers