Home > Cloud Computing > Quizzes > CompTIA Cloud+ CV0-002 Exam: Security in the Cloud    
CompTIA Cloud+ CV0-002 Exam: Security in the Cloud    
Fast practice, instant feedback. Timer auto-submits when time’s up.
Avg score: 89% Most missed: “Your company plans to implement multifactor authentication for office desktops. …”

Topics:    
- Data Security    
- Network Security    
- Access Control    

Today’s cloud computing environments use a variety of security mechanisms to protect sensitive data, and regulatory compliance sometimes necessitates their use.    
Sensitive stored and transmitted data is protected with encryption and digital signatures. Access control methods limit IT resource usage through a variety of models including MAC and RBAC. Resource access can be streamlined using solutions such as identity federation and SSO.    

CompTIA Cloud+ CV0-002 Exam: Security in the Cloud    
Time left 00:00
25 Questions

1. You need to harden Linux cloud-based virtual machines. What should you do?
2. Which of the following terms are related to mandatory access control (MAC)?
3. You need to decrypt an e-mail message sent to your mail account. Which key is required to decrypt the message?
4. Which type of encryption scheme uses mathematically related keys?
5. Which of the following is NOT stored in a PKI certificate?
6. Which access control model places permission configuration in the hands of the data owner?
7. Your organization has adopted public cloud computing and is in the process of migrating on-premises IT services. Which solution can extend an on-premises network into the public cloud?
8. What is encrypted plaintext called?
9. A user, Pete, complains that his smartphone no longer authenticates to the company VPN when he is traveling for work. The company issues a unique PKI certificate to each smartphone for VPN access. What is the most likely cause of Pete’s problem?
10. Which of the following ciphers are symmetric?
11. Which mechanism can detect whether a network packet has been tampered with?
12. You are the e-mail administrator for your organization. Currently, a cloud-based e-mail solution is being used. Users must be able to encrypt e-mail messages to one another. What should you do?
13. Your company uses IPSec to secure IP traffic in a cloud virtual network named East1Net. A new cloud virtual machine named Web1 is deployed into East1Net along with a second virtual machine named Db1 that will host a MySQL database. Web1 will host a new custom web application to communicate with MySQL. You need to ensure communication between Web1 and Web2. What should you do?
14. Which of the following exposes programmatic functionality to developers?
15. Which statement regarding symmetric encryption is correct?
16. Digital signatures provide which services?
17. Which type of encryption uses the same key for encryption and decryption?
18. Which statements regarding block and stream ciphers are correct?
19. A large corporation has a single PKI administrator. What should be done to ensure the PKI administrator is not overwhelmed?
20. Which cloud service model provides the most flexibility in assigning cloud resource permissions?
21. Which access control model uses resource labeling for granular access control?
22. You need a security appliance that can detect abnormal activity on the network and send administrative alerts when it is detected. What should you implement?
23. You are planning user authentication between your on-premises network and the public cloud. User identities must exist only once. What should you configure?
24. Your company plans to implement multifactor authentication for office desktops. Which of the following could be used?
25. You are enabling identity federation with a partner organization. Trust is established between the two organizations through digitally signed tokens that result from successful user authentication. Which key is used to verify the digital signatures?