Securing the Cloud Flashcards
In which cloud service model can the consumer “provision” and “deploy and run”?
SaaS
PaaS
IaaS
IaaS
In the Infrastructure as a Service (IaaS) model, the consumer can “provision” and is able to “deploy and run,” but they still do not “manage or control” the underlying cloud infrastructure
Which cloud delivery model is implemented by a single organization, enabling it to be implemented behind a firewall?
Private
Public
Community
Private
A private cloud delivery model is implemented by a single organization, and it can be implemented behind a firewall
Which cloud service model provides the consumer with the infrastructure to create applications and host them?
SaaS
PaaS
IaaS
PaaS
In the Platform as a Service (PaaS) model, the consumer has the ability to create applications and host them
Which cloud delivery model could be considered a pool of services and resources delivered across the Internet by a cloud provider?
Private
Public
Community
Public
A public delivery model could be considered a pool of services and resources delivered across the Internet by a cloud provider
Which cloud service model gives the consumer the ability to use applications provided by the cloud provider over the Internet?
SaaS
PaaS
IaaS
SaaS
In the Software as a Service (SaaS) model, the consumer has the ability to use applications provided by the cloud provider over the Internet
Which cloud delivery model has an infrastructure shared by several organizations with shared interests and common IT needs?
Private
Public
Community
Community
A community delivery model has an infrastructure shared by several organizations with shared interests and common IT needs
Which cloud delivery model could be considered an amalgamation of other types of delivery models?
Public
Community
Hybrid
Hybrid
The hybrid delivery model can be considered an amalgamation of other types of delivery models
With which of the following subscription-based models is security more cost effective than individuals or smaller corporations could ever get on their own?
SECaaS
PaaS
XaaS
SECaaS
Security as a Service (SECaaS) is a subscription-based business model intended to be more cost effective than smaller individuals/corporations could ever get on their own
Which of the following are on-premise or cloud-based security policy enforcement points?
Flood guards
VDI/VDEs
Cloud access security brokers
Cloud access security brokers
Cloud access security brokers are on-premise or cloud-based security policy enforcement points
Which feature of cloud computing involves dynamically provisioning (or deprovisioning) resources as needed?
Multitenancy
Elasticity
CMDB
Elasticity
Elasticity is a feature of cloud computing that involves dynamically provisioning (or de-provisioning) resources as needed
What is the term for restricting an application to a safe/restricted resource area?
Fencing
Securing
Sandboxing
Sandboxing
Sandboxing is the term used for restricting an application to a safe/restricted resource area
Which of the following terms implies hosting data from more than one consumer on the same equipment?
Multitenancy
Duplexing
Bastioning
Multitenancy
Multitenancy implies hosting data from more than one consumer on the same equipment
When going with a public cloud delivery model, who is accountable for the security and privacy of the outsourced service?
The cloud provider and the organization
The cloud provider
The organization
The organization
Ultimately, the organization is accountable for the choice of public cloud and the security and privacy of the outsourced service
When your company purchased a virtual datacenter provider, you inherited a mess. The employees working there had to respond regularly to requests to create virtual machines without the disciplines and controls normally found in the physical world. This resulted in machines being over-provisioned (too much CPU, memory, or disk) and consuming resources long after they were no longer required. What type of problem is this?
VM escape
VM digress
VM sprawl
VM sprawl
VM sprawl can be a result of creating virtual machines without the disciplines and controls of the physical world. This can result in over-provisioning (too much CPU, memory, or disk), or consuming resources after they are no longer required
Although a hybrid cloud could be any mixture of cloud delivery models, it is usually a combination of which of the following?
Public and community
Public and private
Private and community
Public and private
While a hybrid cloud could be any mixture of cloud delivery models, it is usually a combination of public and private