Cloud Security

Question 1

What is a public cloud?

Answer 1

Service provider controls all aspect of the network and resources. You just get access to it.

Service provider owns:
Hardware
Software
Supporting infrastructure

Your interaction:
Web browser access

Question 2

What is the biggest risk when using public cloud?

Answer 2

You are sharing everything but everything is virtually isolated from each other. So one traffic does not cross connect.

Question 3

What is a private cloud?

Answer 3

Exclusive to a business or organization.
You can set up onsite or by a service provider. You do not SHARE ANYTHING with anyone else. It is more secure and public.

Question 4

What is Hybrid cloud?

Answer 4

Best of both:
Cloud-base resources
onsite resources

Question 5

What is community cloud?

Answer 5

Shared cloud infrastructure for multiple organization.

Easy to collaborate with other organizations.

Question 6

What is a SaaS?

Answer 6

Is a cloud computer model - Ready to use application with least management support on organization

Provider’s responsible for:
Infrastructure
Host and manage end user application
Application / Security / Database/ OS/ Networking

Organization’s responsible for
Security of the data (regulations, compliance)
User access
Understand how data is stored.

Question 7

What is PaaS?

Answer 7

Platform as a Service. - Pay as you go or on demand

Provider controls:
Host infrastructure, manages OS

Organization controls
the actual applications running or being created and the security aspect of controlling user access and how data is secure.
Responsible for security patches.

Question 8

What is IaaS?

Answer 8

Infrastructure as a service - service model -

Provider controls
Host the infrastructure

Organization
Application running on the OS and security
Security (patching and user access)
Database
Operating system running now

Question 9

What is XaaS?

Answer 9

Is a generic all-encompassing term for a variety of cloud services like:

Desktop as a service - DaaS
Database as a service - DBaaS
Disaster Recovery - DRaaS
Monitoring - MaaS

Question 10

What is Edge and Fog computing?

Answer 10

They help improve performance when dealing with cloud base solutions.

Helps with Latency.

We are moving the processes closer to the end user.
Enhance realtime processing
Alleviate network congestions.

Edge: servers closer to edge devices

Fog - IOT devices that need low latency. Fog is closer than edge to the IOT.

Question 11

What is a MSP?

Answer 11

Managed Service Providers - remotely manages a customer’s IT infrastructure

Typically follow a subscription model
May manage on premises or off premises resources
Can reduce cost for organization

Question 12

What is a MSSP?

Answer 12

Managed Sevice Security Providers are MSPs that focus on security.

May provide soft services such as training, risk assessments, and auditng

Often provides and manage technical solutions such as firewalls, IPS, anti-malware, VPNs, ACLs

Question 13

What is a virtual machine?

Answer 13

Software base emulation of a computer that runs on physical hardware. It is an isolated environment that you can run different applications.

Essentially you are virtualizing physical servers now.

Question 14

What is a container?

Answer 14

Virtualizes 1 OS so now you can put each app in its own “container”. You can then move containers along just as long as there is a supported container engine running.

Question 15

What is a VM escape?

Answer 15

Potential security breach where the attack has access to the host operating system. You can now leave isolated environment.

Patch the hypervisor at all times and have ACLs

Question 16

What is a VM Sprawl?

Answer 16

The accumulation of unnecessary or unmaintained VMs in your environment.

You need to TAG each VM so you can identify everything.

Question 17

What is VM image vulnerabalities?

Answer 17

Vulnerabilities in the application software and code that needs to be patch.

PATCH PATCH PATCH EVERYTHING!

Question 18

What is a transit gateway?

Answer 18

It allows connecting different Virtual private clouds (VPC) and on premises resources.

Consolidate all inbound connections then forward it outbound correctly.

Question 19

What is VPNs?

Answer 19

Virtual Private Network

A secure connection between your on premises datacenter and your cloud resources.

Question 20

What is Auto-Scaling

Answer 20

The ability to automatically adjust the number of resources needed to meet the demand of the users.

Only run what you need.

Question 21

What is serverless?

Answer 21

Run code directly in the cloud without having to manage, monitor, maintain or secure servers.

Question 22

What is a Web application firewall (WAF) used for?

Answer 22

To inspect http and https traffic to and from your web servers.

You can uncover web base attacks - SQL injections / x-site attacks

Question 23

What is a Secure Web Gateway (SWG)?

Answer 23

Physical or virtual device that protects corporate users from web base threats and enforces corporate acceptable use policies.

THIS IS A PROXY

Does URL filtering / malicious content inspections

Traffic needs to flow through this traffic.

Question 24

What is a Cloud Access Security Broker (CASB)?

Answer 24

Is designed for SaaS applications. On premises or cloud.

Places between the cloud base service consumer and provider and it interjects the security policies as SaaS.