CCSP Free Practice Test

- (Exam Topic 1)
What is the biggest benefit to leasing space in a data center versus building or maintain your own?

1. A. Certification
2. B. Costs
3. C. Regulation
4. D. Control

Correct Answer: B
When leasing space in a data center, an organization can avoid the enormous startup and building costs associated with a data center, and can instead leverage economies of scale by grouping with other organizations and sharing costs.

- (Exam Topic 4)
What is the intellectual property protection for the tangible expression of a creative idea?

1. A. Trade secret
2. B. Copyright
3. C. Trademark
4. D. Patent

Correct Answer: B
Copyrights are protected tangible expressions of creative works. The other answers listed are answers to subsequent questions.

- (Exam Topic 3)
With a federated identity system, where would a user perform their authentication when requesting services or application access?

1. A. Cloud provider
2. B. The application
3. C. Their home organization
4. D. Third-party authentication system

Correct Answer: C
With a federated identity system, a user will perform authentication with their home organization, and the application will accept the authentication tokens and user information from the identity provider in order to grant access. The purpose of a federated system is to allow users to authenticate from their home organization. Therefore, using the application or a third-party authentication system would be contrary to the purpose of a federated system because it necessitates the creation of additional accounts. The use of a cloud provider would not be relevant to the operations of a federated system.

- (Exam Topic 3)
In order to comply with regulatory requirements, which of the following secure erasure methods would be available to a cloud customer using volume storage within the IaaS service model?

1. A. Demagnetizing
2. B. Shredding
3. C. Degaussing
4. D. Cryptographic erasure

Correct Answer: D
Cryptographic erasure is a secure method to destroy data by destroying the keys that were used to encrypt it. This method is universally available for volume storage on IaaS and is also extremely quick. Shredding, degaussing, and demagnetizing are all physically destructive methods that would not be permitted within a cloud environment using shared resources.

- (Exam Topic 4)
Which of the following best describes a sandbox?

1. A. An isolated space where untested code and experimentation can safely occur separate from the production environment.
2. B. A space where you can safely execute malicious code to see what it does.
3. C. An isolated space where transactions are protected from malicious software
4. D. An isolated space where untested code and experimentation can safely occur within the production environment.

Correct Answer: A
Options C and B are also correct, but A is more general and incorporates them both. D is incorrect, because sandboxing does not take place in the production environment.