CCSP · Question #142
CCSP Question #142: Real Exam Question with Answer & Explanation
The correct answer is C: Encryption for data at rest and in motion. Cloud applications require a strong focus on encryption for data in all states due to the shared and distributed nature of cloud infrastructure, a concern that was less pronounced in on-premises environments.
Question
Designers making applications for the cloud have to take into consideration risks and operational constraints that did not exist or were not as pronounced in the legacy environment. Which of the following is an element cloud app designers may have to consider incorporating in software for the cloud that might not have been as important in the legacy environment?
Options
- AIAM capability
- BDDoS resistance
- CEncryption for data at rest and in motion
- DField validation
Explanation
Cloud applications require a strong focus on encryption for data in all states due to the shared and distributed nature of cloud infrastructure, a concern that was less pronounced in on-premises environments.
Common mistakes.
- A. IAM capability (Identity and Access Management) is crucial in both legacy and cloud environments for controlling user access to resources.
- B. DDoS resistance (Distributed Denial of Service) is important for any public-facing application, whether legacy or cloud, to ensure availability.
- D. Field validation is a fundamental security and data integrity practice in all application development, regardless of the deployment environment.
Concept tested. Cloud application design security considerations
Reference. https://learn.microsoft.com/en-us/azure/security/fundamentals/encryption-overview
Topics
Community Discussion
No community discussion yet for this question.