CompTIA
CAS-002 · Question #715
CAS-002 Question #715: Real Exam Question with Answer & Explanation
The correct answer is A: The storage network uses FCoE.. FCoE and iSCSI both encapsulate storage traffic over the Ethernet network, so a physical breach of Ethernet infrastructure exposes that storage traffic even when the native Fibre Channel fabric is untouched.
Question
The security administrator reports that the physical security of the Ethernet network has been breached, but the fibre channel storage network was not breached. Why might this still concern the storage administrator? (Select TWO).
Options
- AThe storage network uses FCoE.
- BThe storage network uses iSCSI.
- CThe storage network uses vSAN.
- DThe storage network uses switch zoning.
- EThe storage network uses LUN masking.
Explanation
FCoE and iSCSI both encapsulate storage traffic over the Ethernet network, so a physical breach of Ethernet infrastructure exposes that storage traffic even when the native Fibre Channel fabric is untouched.
Common mistakes.
- C. vSAN is a software-defined, hypervisor-based storage technology that also runs over Ethernet, but it is not a Fibre Channel protocol and was not identified as the storage network in use.
- D. Switch zoning is an access control mechanism native to Fibre Channel switches that restricts host-to-storage visibility; it operates entirely within the FC fabric and is not affected by a breach of the Ethernet network.
- E. LUN masking is enforced at the storage array controller level to restrict which hosts can access specific logical units; it does not operate at the network transport layer and is unaffected by an Ethernet-layer breach.
Concept tested. Ethernet-dependent storage protocols FCoE and iSCSI security risk
Community Discussion
No community discussion yet for this question.