CAS-002 · Question #11
CAS-002 Question #11: Real Exam Question with Answer & Explanation
The correct answer is A: Traces of proprietary data which can remain on the virtual machine and be exploited. When a company uses on-demand cloud provisioning and then de-provisions resources, data remanence is the primary security concern. Even though the resources are dedicated to a single company, virtual machine disk images and memory can retain traces of proprietary data after the w
Question
Options
- ATraces of proprietary data which can remain on the virtual machine and be exploited
- BRemnants of network data from prior customers on the physical servers during a compute
- CExposure of proprietary data when in-transit to the cloud provider through IPSec tunnels
- DFailure of the de-provisioning mechanism resulting in excessive charges for the resources
Explanation
When a company uses on-demand cloud provisioning and then de-provisions resources, data remanence is the primary security concern. Even though the resources are dedicated to a single company, virtual machine disk images and memory can retain traces of proprietary data after the workload ends. A malicious cloud provider employee or a flaw in the de-provisioning process could expose that residual data. Option B is incorrect because the resources are stated to be dedicated (no prior customers share the physical hardware in this scenario). Option C is incorrect because IPSec tunnels are specifically designed to protect data in transit, making this a mitigation rather than a vulnerability. Option D describes a financial/availability risk, not a security vulnerability.
Community Discussion
No community discussion yet for this question.