Scribd Logo
Upload

Welcome to Scribd!

  • Expert Veri Ed, Online, Free.: Custom View Settings

    Uploaded by

    xanin
    7 views2 pages
    This document discusses starting an encryption system by defining a threat model. It also discusses the five essential characteristics of cloud computing as defined by NIST, including measured service. Additionally, it discusses the Cloud Security Alliance's Cloud Control Matrix containing requirements based on standards and regulations. Finally, it discusses leveraging key management to prevent inappropriate cloud provider access to customer data by segregating keys from the provider hosting the data.

    Original Description:

    Original Title

    17

    Copyright

    © © All Rights Reserved

    Available Formats

    PDF, TXT or read online from Scribd

    Did you find this document useful?

    Is this content inappropriate?

    Report this Document
    This document discusses starting an encryption system by defining a threat model. It also discusses the five essential characteristics of cloud computing as defined by NIST, including measured service. Additionally, it discusses the Cloud Security Alliance's Cloud Control Matrix containing requirements based on standards and regulations. Finally, it discusses leveraging key management to prevent inappropriate cloud provider access to customer data by segregating keys from the provider hosting the data.

    Copyright:

    © All Rights Reserved
    Download as PDF, TXT or read online from Scribd
    Flag for inappropriate content
    7 views2 pages

    Expert Veri Ed, Online, Free.: Custom View Settings

    Uploaded by

    xanin
    This document discusses starting an encryption system by defining a threat model. It also discusses the five essential characteristics of cloud computing as defined by NIST, including measured service. Additionally, it discusses the Cloud Security Alliance's Cloud Control Matrix containing requirements based on standards and regulations. Finally, it discusses leveraging key management to prevent inappropriate cloud provider access to customer data by segregating keys from the provider hosting the data.

    Copyright:

    © All Rights Reserved
    Download as PDF, TXT or read online from Scribd
    Flag for inappropriate content
    of 2

    - Expert Verified, Online, Free.

     Custom View Settings

    Question #86 Topic 1

    When designing an encryption system, you should start with a threat model.

    A. False

    B. True

    Correct Answer: B

    Question #87 Topic 1

    Which of the following is one of the five essential characteristics of cloud computing as defined by NIST?

    A. Multi-tenancy

    B. Nation-state boundaries

    C. Measured service

    D. Unlimited bandwidth

    E. Hybrid clouds

    Correct Answer: C

    Community vote distribution


    C (100%)

    Question #88 Topic 1

    What type of information is contained in the Cloud Security Alliance's Cloud Control Matrix?

    A. Network traffic rules for cloud environments

    B. A number of requirements to be implemented, based upon numerous standards and regulatory requirements

    C. Federal legal business requirements for all cloud operators

    D. A list of cloud configurations including traffic logic and efficient routes

    E. The command and control management hierarchy of typical cloud company

    Correct Answer: B
    Question #89 Topic 1

    Vulnerability assessments cannot be easily integrated into CI/CD pipelines because of provider restrictions.

    A. False

    B. True

    Correct Answer: A

    Question #90 Topic 1

    How can key management be leveraged to prevent cloud providers from inappropriately accessing customer data?

    A. Use strong multi-factor authentication

    B. Secure backup processes for key management systems

    C. Segregate keys from the provider hosting data

    D. Stipulate encryption in contract language

    E. Select cloud providers within the same country as customer

    Correct Answer: C

     Previous Questions Next Questions 

    You might also like