Chapter 10: Cloud and Virtualization Security Flashcards

1
Q

Name of the term that is a model for enabling ubiquitous, convenient, on-demand network access to a shared pool of configurable computing resources that can be rapidly provisioned and released with minimal management effort or service provider interaction.

A

Cloud Computing

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

The fact that many different users share resources in the same cloud infrastructure is known as _______.

A

Multitenancy

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

Cloud resources are available when and where you need them?
a. On-demand self-service computing
b. Scalability
c. Vertical Scaling
d. Horizontal Scaling
e. Elasticity
f. Measured Service
g. Agility and Flexibility

A

a. On-demand self-service computing

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

As the demand for a cloud-based service increases, customers can manually or automatically increase capacity of their operations.
a. On-demand self-service computing
b. Scalability
c. Vertical Scaling
d. Horizontal Scaling
e. Elasticity
f. Measured Service
g. Agility and Flexibility

A

b. Scalability

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

______ increases the capacity of existing servers. For example, you might change the number of CPU cores or the amount of memory assigned to a server.
a. On-demand self-service computing
b. Scalability
c. Vertical Scaling
d. Horizontal Scaling
e. Elasticity
f. Measured Service
g. Agility and Flexibility

A

c. Vertical Scaling

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

________ adds more servers to a pool of clustered servers.
a. On-demand self-service computing
b. Scalability
c. Vertical Scaling
d. Horizontal Scaling
e. Elasticity
f. Measured Service
g. Agility and Flexibility

A

d. Horizontal Scaling

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

Providers use this to track the number of seconds of processing you consume, the amount of storage you occupy, the number of log entries that you generate, and many other measures. They use this usage to determine the charge.
a. On-demand self-service computing
b. Scalability
c. Vertical Scaling
d. Horizontal Scaling
e. Elasticity
f. Measured Service
g. Agility and Flexibility

A

f. Measured Service

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

The speed of provision cloud resources and the ability to use them for short periods of time.
a. On-demand self-service computing
b. Scalability
c. Vertical Scaling
d. Horizontal Scaling
e. Elasticity
f. Measured Service
g. Agility and Flexibility

A

g. Agility and Flexibility

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

________ are the firms that offer cloud computing services to their customers.

A

Cloud service providers

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

_____ are the organizations and individuals who purchase cloud services from cloud service providers.

A

Cloud Consumers

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

______ are organizations that offer ancillary products or services that support or integrate with the offerings of a cloud service provider.

A

Cloud Partners

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

_________ are independent organizations that provide third party assessments of cloud services and operations.

A

Cloud Auditors

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

______ serve as the intermediaries that provide the connectivity that allows the delivery of cloud services from providers to consumers.

A

Cloud Carriers

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q

________ offerings allow customers to manage and configure computing, storage and networks. The customer does not need to worry about the underlying hardware.

A

Infrastructure as a service

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
15
Q

_________ offerings provide customers with access to a fully managed application running in the cloud. The provider is responsible for everything from the operation of the physical datacenters to the performance management of the application itself.

A

Software as a Service (SaaS)

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
16
Q

_______ offerings provide the customer with managing their own server where they may run applications. Infrastructure is managed by the provider.

A

Platform as a service

17
Q

________ platforms are an example of PaaS computing. This approach allows the customers to upload their own code functions to the provider and then the provider will execute those functions on a scheduled basis.

A

Function as a Service

18
Q

Serverless computing environments are an example of ________.

A

Function as a Service

19
Q

________ are service organizations that provide information technology as a service to their customers. They may handle an organization’s IT needs completely, or they may offer focused services such as network design and implementation, application monitoring, or cloud cost management.

A

Managed Service Providers

20
Q

________ allocates large volumes of storage for use by virtual server instances. These volumes are then formatted as virtual disks by the operating system on those server instances and used as they would a physical drive.

A

Block Storage

21
Q

________ provides customers with the ability to place files in buckets and treat each file as an independent entity that may be accessed over the web or through the provider’s API.

A

Object Storage

22
Q

AWS simple storage service is an example of _________.

A

object storage

23
Q

EBS is an example of __________.

A

Block Storage

24
Q

Name 3 security considerations mentioned from the book to keep in mind when working with cloud storage.

A
  1. Set Permissions Properly
  2. Consider high availability and durability options.
  3. Use encryption to protect sensitive data.
25
Q

Cloud networks supports ____________.

A

Software Defined Networking

26
Q

VPC

A

Virtual Private Cloud

27
Q

______ allows network engineers to place systems of differing security levels and functions on different network subnets.

A

Segmentation

28
Q

Using ____, teams can group systems into subnets and designate those subnets as public or private, depending on whether access to them is permitted from the internet.

A

VPC

29
Q

What do VPC endpoints offer?

A

They allow the connection of VPCs to each other using the cloud provider’s secure network backbone.

30
Q

Cloud _______ extend VPC endpoints by allowing the direct interconnection of cloud VPCs with on-premises VLANs for hybrid cloud operations.

A

Transit Gateways

31
Q

A principle that states that data is subject to the legal restrictions of any jurisdiction where it is collected, stored, or processed.

A

Data Sovereignty

32
Q

VM sprawl

A

IaaS users create a virtual service instances then abandons them.

33
Q

_________ are software tools that serve as intermediaries between cloud service users and cloud service providers.

A

Cloud access security brokers (CASBs)

34
Q

______ CASB solutions physically or logically reside in the connection path between the user and the service. They may do this through a hardware appliance or an endpoint agent that routes requests through the CASB.

A

Inline CASB

35
Q

______ CASB solutions do not interact directly with the user but rather interact directly with the cloud provider through the provider’s API.

A

API-based CASB

36
Q

Which CASB solution blocks requests that violate the policy.

A

Inline CASB solution. API-based CASB solution does not allow that.

37
Q

Cloud providers offer ______ that customers use to limit the actions that users of their accounts may take.

A

Resource policies