Which cloud service model allows users to access applications hosted and managed by the provider, with the user only needing to configure the application?
Correct Answer: A
SaaS enables users to access hosted applications managed by the provider, with only minor configuration by the customer. Reference: [CCSK Study Guide, Domain 1 - Service Models]
Question 87
Which of the following is not part of STRIDE model?
Correct Answer: C
The letters in STRIDE threat model represent Spoofing of identity, Tampering with data, Repudiation, Information disclosure, Denial of service, and Elevation of privilege. The other options are simply mixed up or incorrect versions of the same.
Question 88
Which one of the following is not one the cloud deployment models?
Correct Answer: C
The four cloud deployment models are 1. Public 2. Private 3. Hybrid 4. Community
Question 89
Which cloud deployment model involves a cloud and a datacenter, bound together by technology to enable data and application portability?
Correct Answer: A
Thehybrid clouddeployment model involves integrating a private cloud (or on-premises datacenter) with a public cloud, bound together by technology that enablesdata and application portability. This allows workloads to move seamlessly between environments, leveraging the benefits of both private and public clouds. From theCCSK v5.0 Study Guide, Domain 1 (Cloud Computing Concepts and Architectures), Section 1.3: "A hybrid cloud combines on-premises infrastructure (or a private cloud) with a public cloud, integrated through technology that allows data and application portability. This model enables organizations to maintain sensitive workloads on-premises while leveraging the scalability of public cloud services." Option A (Hybrid cloud) is the correct answer. Option B (Public cloud) is incorrect because it involves only cloud provider resources, not a datacenter. Option C (Multi-cloud) is incorrect because it refers to using multiple public cloud providers, not a datacenter. Option D (Private cloud) is incorrect because it does not inherently include integration with a public cloud. References: CCSK v5.0 Study Guide, Domain 1, Section 1.3: Cloud Deployment Models.
Question 90
The containment phase of the incident response lifecycle requires taking systems offline.
