Section 15.134 Cloud Security

Question 1

Cloud security threats 1

Shared Physical Server Vulnerabilities

Answer 1

In cloud environments, multiple users share the same physical server

● Compromised data from one user can potentially impact others on the
same server

Question 2

Shared Physical Server Risk Mitigation

Answer 2

● Implement strong isolation mechanisms (e.g hypervisor protection, secure multi-tenancy)

● Perform regular vulnerability scanning, and patch security gaps

Question 3

Cloud security threats 2

Inadequate Virtual Environment Security

Answer 3

Virtualisation is essential in cloud computing

● Inadequate security in the virtual environment can lead to unauthorized access and data breaches

Question 4

Inadequate Virtual Environment Security Mitigation

Answer 4

● Use secure VM templates
● Regularly update and patch VMs
● Monitor for unusual activities
● Employ network segmentation to isolate VMs

VM = Virtual Machine

Question 5

Cloud security threats 3

User Access Management

Answer 5

Weak user access management can result in unauthorized access to sensitive data and systems

Question 6

User Access Management Mitigation

Answer 6

● Enforce strong password policies

● Implement multi-factor authentication

● Limit user permissions (Principle of Least Privilege)

● Monitor user activities for suspicious behavior

Question 7

Cloud security threats 4

Lack of Up-to-date Security Measures

Answer 7

Cloud environments are dynamic and require up-to-date security measures

● Failure to update can leave systems vulnerable to new threats

Question 8

Lack of Up-to-date Security Measures Mitigation

Answer 8

● Regularly update and patch software and systems

● Review and update security policies

● Stay informed about the latest threats and best practices

Question 9

Cloud security threats 5

Single Point of Failure

Answer 9

Cloud services relying on specific resources or processes can lead to system-wide outages if they fail

Question 10

Single Point of Failure Mitigation

Answer 10

● Implement redundancy and failover procedures

● Use multiple servers, data centers, or cloud providers

● Regularly test failover procedures

Question 11

Cloud security threats 6

Weak Authentication and Encryption Practices

Answer 11

Weak authentication and encryption can expose cloud systems and data

Question 12

Weak Authentication and Encryption Practices Mitigation

Answer 12

● Use multi-factor authentication
● Strong encryption algorithms
● Secure key management practices

Question 13

Cloud security threats 7

Unclear Policies

Answer 13

Unclear security policies can lead to confusion and inconsistencies in
implementing security measures

Question 14

Unclear Policies Mitigiation

Answer 14

● Develop clear, comprehensive security policies covering data handling, access control, incident response, and more

● Regularly review and update policies and provide effective communication and training

Question 15

Cloud security threats 8

Data Remnants

Answer 15

Residual data left behind after deletion or erasure processes

● In a cloud environment, data may not be completely removed, posing a
security risk

Question 16

Data Remnants Mitigation

Answer 16

● Implement secure data deletion procedures

● Use secure deletion methods

● Manage backups securely

● Verify data removal after deletion