Cloud Security Flashcards
What is cloud security?
The set of practices and technologies designed to protect data, applications, and infrastructures in cloud environments.
What are the three main cloud service models?
Infrastructure as a Service (IaaS), Platform as a Service (PaaS), and Software as a Service (SaaS).
What is shared responsibility in cloud security?
The division of security responsibilities between the cloud service provider and the customer.
What is encryption at rest?
Data encryption when it is stored on physical or virtual storage devices.
What is encryption in transit?
Protecting data during transmission between systems using encryption protocols like TLS/SSL.
What is multi-tenancy in the cloud?
When multiple customers share the same physical cloud infrastructure, but data isolation mechanisms keep their information separate.
What are cloud access security brokers (CASBs)?
Tools that act as intermediaries between cloud service users and providers, enforcing security policies and monitoring data traffic.
What is IAM in cloud security?
Identity and Access Management, which ensures that only authorized users can access specific cloud resources.
What are the main risks of using public cloud environments?
Data breaches, insecure APIs, account hijacking, and insufficient access control.
What is a Virtual Private Cloud (VPC)?
A private section of a cloud service provider’s environment that is logically isolated from other customers’ sections.
What are cloud-native security tools?
Security solutions that are built and optimized for cloud environments, such as AWS GuardDuty or Microsoft Azure Security Center.
What is container security?
The practice of securing applications that are packaged in containers, such as with Docker or Kubernetes environments.
