nerdexam
Palo_Alto_Networks

PCCSE · Question #104

A customer has serverless functions that are deployed in multiple clouds. Which serverless cloud provider is covered be "overly permissive service access" compliance check?

The correct answer is C. AWS. The 'overly permissive service access' compliance check in Prisma Cloud Compute targets AWS Lambda functions. It evaluates the IAM execution role attached to a Lambda function to detect if it grants excessive permissions (e.g., wildcards like '*' on actions or resources). This is

Serverless Security

Question

A customer has serverless functions that are deployed in multiple clouds. Which serverless cloud provider is covered be "overly permissive service access" compliance check?

Options

  • AAlibaba
  • BGCP
  • CAWS
  • DAzure

How the community answered

(48 responses)
  • A
    2% (1)
  • B
    8% (4)
  • C
    85% (41)
  • D
    4% (2)

Explanation

The 'overly permissive service access' compliance check in Prisma Cloud Compute targets AWS Lambda functions. It evaluates the IAM execution role attached to a Lambda function to detect if it grants excessive permissions (e.g., wildcards like '*' on actions or resources). This is an AWS-specific concept tied to IAM execution roles. While Prisma Cloud supports serverless functions on GCP and Azure as well, this particular compliance check is scoped to AWS Lambda.

Topics

#Serverless Security#Compliance Checks#Cloud Security Posture Management#Identity and Access Management

Community Discussion

No community discussion yet for this question.

Full PCCSE Practice