Section 13 Cloud Security

Question 1

A way of offering on demand services that extend the traditional capabilities.

Answer 1

Cloud Computing

Question 2

Allows a cloud provider to offer a full desktop operating.

Answer 2

Virtual Desktop Infrastructure (VDI)

Question 3

A service provider makes resources available to the end users over the internet.

Answer 3

Public Cloud

Question 4

A company creates its own cloud environment that only it can utilize as an internal enterprise resource.

Answer 4

Private Cloud

Question 5

A mixed computing, storage, and services, environment made up on premises infrastructure, private cloud services, and public cloud services.

Answer 5

Hybrid Cloud

Question 6

Resources and costs are shared among several different organizations who have common service needs.

Answer 6

Community Cloud

Question 7

Provides all the hardware, operating system, software, and applications needed for a complete service to be delivered.

Answer 7

Software as a Service (SaaS)

Question 8

Provides all hardware, operating system, and backened software needed in order to develop your own software or service.

Answer 8

Infrastructure as a Service (IaaS)

Question 9

Provides your organization with the hardware and software needed for a specific service to operate.

Answer 9

Platform as a Service (PaaS)

Question 10

Provides your organization with various types of security services without the need to maintain a cybersecurity staff.

Answer 10

Secuirty as a Service (SECaaS)

Question 11

Utilizes separate virtual networks to allow security professionals to test suspicious or malicious files.

Answer 11

Sandboxing

Question 12

Servers are used to store, transfer, migrate, synchronize, and archive files for your organization.

Answer 12

File Servers

Question 13

A specialized type of file server that is used to host files for distribution across the web.

Answer 13

FTP Server

Question 14

A server that acts as a central repository of all the user accounts and their associated passwords for the network.

Answer 14

Domain Controller

Question 15

A private network segment made available to a single cloud consumer within a public cloud.

Answer 15

Virtual Private Cloud (VPC)

Question 16

Enterprise management software designed to mediate access to cloud services by users across all types of devices.

Answer 16

Cloud Access Security Broker (CASB)

Question 17

A security appliance or host positioned at the client network edge that forwards user traffic to the cloud network if the contents of that traffic comply with policy.

Answer 17

Forward Proxy

Question 18

An appliance positioned at the cloud network edge and directs traffics to cloud services if the contents of that traffic comply with policy.

Answer 18

Reverse Proxy

Question 19

A method that uses the broker’s connections between the cloud service and the cloud consumer.

Answer 19

Application Programming Interface (API)

Question 20

A tool to transfer data from or to a server, using, one of the supported protocols (HTTP, HTTPS, FTP, FTPS, SCP, SFTP, TFTP, DICT, TELNET, LDAP, FILE)

Answer 20

Curl

Question 21

A cloud service model that supports serverless software architecture by provisioning runtime containers in which code is executed in an particular programming language.

Answer 21

Function as a Service (FaaS)

Question 22

A software architecture that runs functions within virtualized runtime containers in a cloud rather than on dedicated server instances.

Answer 22

Serverless

Question 23

1. Insecure API
2. Improper Key Management
3. Logging and Monitoring
4. Unprotected Storage

Answer 23

Key Cloud Threats

Question 24

A content delivery network policy that instructs the browser to treat requests from nominated domains as safe.

Answer 24

Cross Origin Resource Sharing (CORS) Policy