nerdexam
ExamsCAS-003Questions#415
CompTIA

CAS-003 · Question #415

CAS-003 Question #415: Real Exam Question with Answer & Explanation

The correct answer is B: Private cloud services with single-tenancy PaaS services. A private cloud with single-tenancy PaaS provides dedicated, isolated infrastructure for one organization, directly satisfying regulatory requirements for data segmentation and isolation.

Question

An organization is in the process of evaluating service providers for an upcoming migration to cloud-based services for the organization's ERP system. As part of the requirements defined by the project team, regulatory requirements specify segmentation and isolation of the organization's data. Which of the following should the vendor management team identify as a requirement during the procurement process?

Options

  • APublic cloud services with single-tenancy IaaS architectures
  • BPrivate cloud services with single-tenancy PaaS services
  • CPrivate cloud services with multitenancy in place for private SaaS environments
  • DPublic cloud services with private SaaS environments supported by private IaaS backbones

Explanation

A private cloud with single-tenancy PaaS provides dedicated, isolated infrastructure for one organization, directly satisfying regulatory requirements for data segmentation and isolation.

Common mistakes.

  • A. Public cloud IaaS with single-tenancy provides dedicated hardware but still operates within shared public cloud infrastructure, which may not satisfy stringent regulatory segmentation requirements.
  • C. Multitenancy in a private SaaS environment means multiple customers share the same application instance, violating the isolation requirement even if the underlying cloud is private.
  • D. Public cloud with private SaaS backed by private IaaS is a hybrid model that retains reliance on public cloud infrastructure, introducing compliance gaps for organizations requiring strict data isolation.

Concept tested. Cloud tenancy models and regulatory data isolation requirements

Reference. https://nvlpubs.nist.gov/nistpubs/Legacy/SP/nistspecialpublication800-145.pdf

Community Discussion

No community discussion yet for this question.

Sign up to join the discussion
Full CAS-003 Practice