CAS-001 · Question #260
CAS-001 Question #260: Real Exam Question with Answer & Explanation
The correct answer is A: Visibility on the traffic between the virtual machines can impact confidentiality. The critical security risk is that all VMs - including externally facing web servers, customer data processors, and financial data processors - share the same virtual network interface (and likely the same virtual switch). In a properly segmented environment, these workloads shou
Question
Options
- AVisibility on the traffic between the virtual machines can impact confidentiality
- BNIC utilization can exceed 50 percent and impact availability
- CShared virtual switches can negatively impact the integrity of network packets
- DAdditional overhead from network bridging can affect availability
Explanation
The critical security risk is that all VMs - including externally facing web servers, customer data processors, and financial data processors - share the same virtual network interface (and likely the same virtual switch). In a properly segmented environment, these workloads should be on isolated network segments. When they share a virtual switch, traffic between VMs may traverse the same virtual network fabric. A compromised external web server could sniff traffic from VMs handling sensitive customer or financial data, violating confidentiality. This is the classic risk of improper virtual network segmentation. Option B is a performance concern (and 50% NIC utilization is not even a threshold for concern), not a security risk. Option C is incorrect because virtual switches do not inherently corrupt packet integrity - shared switching is not an integrity threat. Option D describes a performance impact from network bridging overhead, which is not a security risk specific to this configuration, and bridging is not inherent to the described scenario.
Community Discussion
No community discussion yet for this question.