DOMAIN 7 - CLOUD NETWORK VIRTUALIZATION, SECURITY CHANGES Flashcards
All clouds utilize some form of ________ to abstract the physical network and create a network resource pool
virtual networking
If you are a cloud provider (including managing a private cloud), physical _________ of networks
composing your cloud is important for both operational and security
segregation
_______leverage existing network technology implemented in most network hardware
VLANs
_________ are not designed for cloud-scale virtualization or security and shouldn’t be considered, on their own, an effective security control for isolating networks
VLANs
A more complete abstraction layer on top of networking hardware, _________ decouple the network control plane from the data plane. This allows us to abstract networking from the
traditional limitations of a LAN.
SDNs
There are multiple implementations, including standards-based and proprietary options. Depending on the implementation, _______ can offer much higher flexibility and isolation.
SDN
For example, an SDN may use ______ so that virtual machines and other “standard” assets don’t need any changes to their underlying network stack.
packet encapsulation
customer security tools need to rely on an _______, or a software agent installed in instances
in-line virtual appliance