CSA

CCSK

Certificate of Cloud Security Knowledge

http://killexams.com/pass4sure/exam-detail/CCSK

QUESTION 51 How is encryption managed on multi- tenant storage?

Single key for all data owners
One key per data owner
Multiple keys per data owner
The answer could be A, B, or C depending on the provider
C for data subject to the EU Data Protection Directive; B for all others

Correct Answer: B

QUESTION 52 Which statement best describes why it is important to know how data is being accessed?

The devices used to access data have different storage formats.
The devices used to access data use a variety of operating systems and may have different programs installed on them.
The device may affect data dispersion.
The devices used to access data use a variety of applications or clients and may have different security characteristics.
The devices used to access data may have different ownership characteristics.

Correct Answer: D

QUESTION 53 What is resource pooling?

The provider’s computing resources are pooled to serve multiple consumers.
Internet-based CPUs are pooled to enable multi-threading.
The dedicated computing resources of each client are pooled together in a colocation facility.
Placing Internet (“cloud”) data centers near multiple sources of energy, such as hydroelectric dams.
None of the above.

Correct Answer: A

QUESTION 54 Your SLA with your cloud provider ensures continuity for all services.

False
True

Correct Answer: A

QUESTION 55 Which of the following is NOT normally a method for detecting and preventing data migration into the cloud?

Intrusion Prevention System
URL filters
Data Loss Prevention
Cloud Access and Security Brokers (CASB)
Database Activity Monitoring

Correct Answer: A

QUESTION 56

In which type of environment is it impractical to allow the customer to conduct their own audit, making it important that the data center operators are required to provide auditing for the customers?

Multi-application, single tenant environments
Long distance relationships
Multi-tenant environments
Distributed computing arrangements
Single tenant environments

Correct Answer: C

QUESTION 57 ENISA: Lock-in is ranked as a high risk in ENISA research, a key underlying vulnerability causing lock in is:

Lack of completeness and transparency in terms of use
Lack of information on jurisdictions
No source escrow agreement
Unclear asset ownership
Audit or certification not available to customers

Correct Answer: A

QUESTION 58

What is the best way to ensure that all data has been removed from a public cloud environment including all media such as back-up tapes?

Allowing the cloud provider to manage your keys so that they have the ability to access and delete the data from the main and back-up storage.
Maintaining customer managed key management and revoking or deleting keys from the key management system to prevent the data from being accessed again.
Practice Integration of Duties (IOD) so that everyone is able to delete the encrypted data.
Keep the keys stored on the client side so that they are secure and so that the users have the ability to delete their own data.
Both B and D. Correct Answer: B Explanation

QUESTION 59 ENISA: A reason for risk concerns of a cloud provider being acquired is:

Arbitrary contract termination by acquiring company
Resource isolation may fail
Provider may change physical location
Mass layoffs may occur
Non-binding agreements put at risk

Correct Answer: E

QUESTION 60

Which communication methods within a cloud environment must be exposed for partners or consumers to access database information using a web application?

Software Development Kits (SDKs)
Resource Description Framework (RDF)
Extensible Markup Language (XML)
Application Binary Interface (ABI)
Application Programming Interface (API)

Correct Answer: E

/Refere nce:

For More exams visit https://killexams.com/vendors-exam-list