DOMAIN 1 - CLOUD SECURITY SCOPE, RESPONSIBILTIES, AND MODELS

Question 1

CLOUD PROVIDER IS RESPONSIBLE FOR NEARLY ALL SECURITY

Answer 1

SaaS

Question 2

CLOUD PROVIDER RESPONSIBLE FOR THE SECURITY OF THE PLATFORM, CONSUMER RESPONSIBLE FOR EVERYTHING THEY IMPLEMENT ON PLATFORM, INCLUDING HOW THEY CONFIGURE ANY OFFERED SECURITY FEATURES. RESPONSIBILITIES ARE EVENLY MORE SPLIT.

Answer 2

PaaS

Question 3

PROVIDER RESPONSIBLE FOR FOUNDATIONAL SECURITY, CLOUD USER RESPONSIBLE FOR EVERYTHING THEY BUILD ON INFRASTRUCTURE. PLACES MORE RESPONSIBILTY ON CLIENT.

Answer 3

IaaS

Question 4

INCLUDE VISUALIZATIONS AND DESCRIPTIONS USED TO EXPLAIN CLOUDS SECURITY CONCEPTS AND PRINCIPLES

Answer 4

CONCEPTUAL MODELS OR FRAMEWORKS

Question 5

CATEGORIZE AND DETAIL SPECIFIC CLOUD SECURITY CONTROLS OR CATEGORIES OF CONTROLS

Answer 5

CONTROL MODELS OR FRAMEWORKS

Question 6

TEMPLATES FOR IMPLEMENTING CLOUD SECURITY, TYPICALLY GENERALIZED. THEY CAN BE VERY ABSTRACT, BORDERING ON CONCEPTUAL, OR QUITE DETAILED, DOWN TO SPECIFIC CONTROLS AND FUNCTIONS

Answer 6

REFERENCE ARCHITECTURES

Question 7

REUSABLE SOLUTIONS TO PARTICULAR PROBLEMS. AS WITH REFRENCE ARCHITECTURES, THEY CAN BE MORE OR LESS ABSTRACT OR SPECIFIC, EVEN DOWN TO COMMON IMPLEMENTATION PATTERNS ON PARTICULAR CLOUD PLATFORMS

Answer 7

DESIGN PATTERNS