Domain 3 :Compare and contrast security implications of different architecture models

Question 1

Public Cloud

Answer 1

CSP hosts multiple tenants, sometimes on the same hardware. The risk in multi-tenancy cloud models is that, since multiple organizations are hosted on the same server, the actions of one tenant can impact the actions of another, and your organization could suffer a data breach. The public cloud is known as multi-tenant.

Question 2

Private Cloud

Answer 2

With this model, a company may purchase its hardware or have the CSP host it on separate servers from other companies.

Question 3

Community Cloud

Answer 3

With this model, companies from the same industry collectively pay for a bespoke application to be written, and the cloud provider hosts it on a dedicated cloud infrastructure

Question 4

Hybrid Cloud

Answer 4

This model is ideal for companies that decide not to host all of their organization in the cloud. A hybrid cloud is a mixture of using both on-premises and cloud infrastructures.

Question 5

Infrastructure as a Service (IaaS)

Answer 5

The CSP will provide network infrastructure, including desktops, servers, storage, firewalls, routers, and switches—the hardware devices for a network

Question 6

Saas

Answer 6

SaaS is a cloud service in which the CSP hosts a bespoke predefined software application that is accessed through a web server. Examples of these applications include Goldmine, Salesforce, and Office 365. SaaS applications cannot be modified

Question 7

Platform as a service

Answer 7

PaaS, or Platform as a Service, offers developers the necessary environment to build applications seamlessly.

Question 8

Security as a Service (SECaaS)

Answer 8

SECaaS provides Identity and Access Management (IAM), which grants secure access to applications from anywhere at any time. A managed service security provider will provide security staff.

Question 9

Anything as a Service (XaaS)

Answer 9

XaaS describes a multitude of other available cloud services, such as Network as a Service (NaaS), Desktop as a Service (DaaS), Backup as a Service (BaaS), and many more

Question 10

Infrastructure as a code

Answer 10

Infrastructure as Code (IaC) is the practice of defining and managing IT infrastructure through machine-readable code or scripts. IaC is written in languages such as YAML and JSON

Question 11

Serverless Computing

Answer 11

serverless computing offloads operational overhead, enabling developers to focus solely on writing and deploying code

Question 12

Mircoservices

Answer 12

Microservices architecture involves breaking down an application into a collection of smaller, self-contained services that communicate with each other through well-defined APIs