CCSP Free Practice Test

- (Exam Topic 4)
Which crucial aspect of cloud computing can be most threatened by insecure APIs?

1. A. Automation
2. B. Resource pooling
3. C. Elasticity
4. D. Redundancy

Correct Answer: A
Cloud environments depend heavily on API calls for management and automation. Any vulnerability with the APIs can cause significant risk and exposure to all tenants of the cloud environment. Resource pooling and elasticity could both be impacted by insecure APIs, as both require automation and orchestration to operate properly, but automation is the better answer here. Redundancy would not be directly impacted by insecure APIs.

- (Exam Topic 3)
Within a SaaS environment, what is the responsibility on the part of the cloud customer in regard to procuring the software used?

1. A. Maintenance
2. B. Licensing
3. C. Development
4. D. Purchasing

Correct Answer: B
Within a SaaS implementation, the cloud customer licenses the use of the software from the cloud provider
because SaaS delivers a fully functional application to the customer. With SaaS, the cloud provider is responsible for the entire software application and any necessary infrastructure to develop, run, and maintain it. The purchasing, development, and maintenance are fully the responsibility of the cloud provider.

- (Exam Topic 4)
Legal controls refer to which of the following?

1. A. ISO 27001
2. B. PCI DSS
3. C. NIST 800-53r4
4. D. Controls designed to comply with laws and regulations related to the cloud environment

Correct Answer: D
Legal controls are those controls that are designed to comply with laws and regulations whether they be local or international.

- (Exam Topic 1)
If you're using iSCSI in a cloud environment, what must come from an external protocol or application?

1. A. Kerberos support
2. B. CHAP support
3. C. Authentication
4. D. Encryption

Correct Answer: D
iSCSI does not natively support encryption, so another technology such as IPsec must be used to encrypt communications.

- (Exam Topic 3)
Implementing baselines on systems would take an enormous amount of time and resources if the staff had to apply them to each server, and over time, it would be almost impossible to keep all the systems in sync on an ongoing basis.
Which of the following is NOT a package that can be used for implementing and maintaining baselines across an enterprise?

1. A. Puppet
2. B. SCCM
3. C. Chef
4. D. GitHub

Correct Answer: D
GitHub is a software development platform that serves as a code repository and versioning system. It is solely used for software development and would not be appropriate for applying baselines to systems. Puppet is an open-source configuration management tool that runs on many platforms and can be used to apply and maintain baselines. The Software Center Configuration Manager (SCCM) was developed by Microsoft for managing systems across large groups of servers. Chef is also a system for maintaining large groups of systems throughout an enterprise.