WGU D320/CCSP (ACTUAL) QUESTIONS WITH
ACCURATE EXPLAINED ANSWERS RATED A+
1. The management plane in cloud environments is primarily
responsible for which function?
A. Billing services
B. Orchestrating administrative tasks
C. End-user application hosting
D. Logging user activity
Answer: B
Explanation: The management plane handles administration and
orchestration across cloud systems, interacting with APIs and management
consoles. It enables centralized control over resources. Billing and logging
are supportive functions, while end-user hosting is handled by the data
plane.
2. Which type of cloud computing allows multiple customers
to share the same infrastructure while maintaining logical
separation?
A. Multitenancy
B. Elasticity
C. Portability
D. Broad network access
Answer: A
Explanation: Multitenancy is a cloud model where multiple users share
physical resources but remain logically isolated. Elasticity and portability
refer to scaling and moving resources, while broad network access allows
services to be accessed over the internet.
3. When protecting PII governed by law, which category is
applied?
A. Contractual
B. Regulated
C. Optional
D. Internal
Answer: B
Explanation: Regulated PII is protected by laws such as HIPAA or FISMA.
Failure to comply can result in legal penalties. Contractual PII refers to
requirements in service agreements, not laws.
,4. Which U.S. regulation governs financial reporting and
corporate transparency?
A. HIPAA
B. SOX
C. PCI DSS
D. FISMA
Answer: B
Explanation: The Sarbanes-Oxley Act (SOX) ensures accuracy in financial
reporting and transparency to shareholders. HIPAA deals with healthcare
data, PCI DSS with credit card security, and FISMA with federal IT systems.
5. Which cloud model combines on-premises infrastructure
with cloud services?
A. Public
B. Private
C. Hybrid
D. Community
Answer: C
Explanation: Hybrid clouds allow organizations to use existing
infrastructure while leveraging cloud services for disaster recovery, scaling,
or additional capacity. Pure public or private clouds do not integrate with
existing on-premises systems in the same way.
6. What does broad network access in cloud computing
enable?
A. Users can access services from any device or location
B. Users share resources with multiple tenants
C. Resources automatically scale up or down
D. Applications can move between clouds easily
Answer: A
Explanation: Broad network access allows cloud services to be accessed
over the internet from different devices. Multitenancy, elasticity, and
portability describe different cloud features.
7. Which protocol is primarily used for REST APIs?
A. HTTP
B. SSH
C. SAML
D. FTP
Answer: A
Explanation: REST APIs communicate over HTTP and often exchange data
in JSON or XML. SSH is for secure remote access, SAML is for authentication,
,and FTP is for file transfer.
8. Which cloud characteristic allows automatic scaling of
resources based on demand?
A. Elasticity
B. Multitenancy
C. Portability
D. Broad network access
Answer: A
Explanation: Elasticity lets cloud resources scale up or down depending on
demand. Multitenancy, portability, and broad network access describe
different capabilities unrelated to dynamic scaling.
9. Which aspect of cloud computing could conflict with legal
requirements that data cannot share infrastructure?
A. Elasticity
B. Multitenancy
C. Portability
D. Broad network access
Answer: B
Explanation: Multitenancy shares physical resources across multiple
tenants, which could violate strict legal requirements. Elasticity, portability,
and broad network access do not inherently share resources.
10. Which mechanism allows cloud administrators to
automate tasks across systems?
A. API calls
B. XML encoding
C. TLS encryption
D. Manual configuration
Answer: A
Explanation: APIs allow administrators to execute commands
programmatically across cloud systems. XML is for data encoding, TLS is for
encryption, and manual configuration does not enable automation.
11. What is a primary benefit of using a hybrid cloud for
disaster recovery?
A. No need for existing infrastructure
B. Ability to maintain critical services on-premises while using cloud
resources for backup
C. Eliminates all security responsibilities
, D. Reduces internet connectivity requirements
Answer: B
Explanation: Hybrid clouds allow organizations to keep core production
services on-premises and use the cloud for backup or failover. This ensures
continuity while leveraging scalable resources.
12. Which data protection requirement arises from service
contracts rather than law?
A. Regulated PII
B. Contractual PII
C. Jurisdictional PII
D. Legal PII
Answer: B
Explanation: Contractual PII obligations are defined by agreements
between organizations and providers. Regulated PII is legally mandated, not
contractual.
13. Which U.S. federal act focuses on IT security for federal
agencies?
A. HIPAA
B. SOX
C. FISMA
D. PCI DSS
Answer: C
Explanation: FISMA mandates federal agencies implement and monitor IT
security programs. HIPAA protects health data, SOX addresses financial
reporting, and PCI DSS is an industry standard.
14. Which of the following is an industry standard, not a
federal regulation?
A. HIPAA
B. PCI DSS
C. FISMA
D. SOX
Answer: B
Explanation: PCI DSS sets standards for organizations handling payment
card data. Unlike HIPAA, SOX, and FISMA, it is not legally mandated by the
federal government.
15. What is the main purpose of TLS in cloud
communications?
ACCURATE EXPLAINED ANSWERS RATED A+
1. The management plane in cloud environments is primarily
responsible for which function?
A. Billing services
B. Orchestrating administrative tasks
C. End-user application hosting
D. Logging user activity
Answer: B
Explanation: The management plane handles administration and
orchestration across cloud systems, interacting with APIs and management
consoles. It enables centralized control over resources. Billing and logging
are supportive functions, while end-user hosting is handled by the data
plane.
2. Which type of cloud computing allows multiple customers
to share the same infrastructure while maintaining logical
separation?
A. Multitenancy
B. Elasticity
C. Portability
D. Broad network access
Answer: A
Explanation: Multitenancy is a cloud model where multiple users share
physical resources but remain logically isolated. Elasticity and portability
refer to scaling and moving resources, while broad network access allows
services to be accessed over the internet.
3. When protecting PII governed by law, which category is
applied?
A. Contractual
B. Regulated
C. Optional
D. Internal
Answer: B
Explanation: Regulated PII is protected by laws such as HIPAA or FISMA.
Failure to comply can result in legal penalties. Contractual PII refers to
requirements in service agreements, not laws.
,4. Which U.S. regulation governs financial reporting and
corporate transparency?
A. HIPAA
B. SOX
C. PCI DSS
D. FISMA
Answer: B
Explanation: The Sarbanes-Oxley Act (SOX) ensures accuracy in financial
reporting and transparency to shareholders. HIPAA deals with healthcare
data, PCI DSS with credit card security, and FISMA with federal IT systems.
5. Which cloud model combines on-premises infrastructure
with cloud services?
A. Public
B. Private
C. Hybrid
D. Community
Answer: C
Explanation: Hybrid clouds allow organizations to use existing
infrastructure while leveraging cloud services for disaster recovery, scaling,
or additional capacity. Pure public or private clouds do not integrate with
existing on-premises systems in the same way.
6. What does broad network access in cloud computing
enable?
A. Users can access services from any device or location
B. Users share resources with multiple tenants
C. Resources automatically scale up or down
D. Applications can move between clouds easily
Answer: A
Explanation: Broad network access allows cloud services to be accessed
over the internet from different devices. Multitenancy, elasticity, and
portability describe different cloud features.
7. Which protocol is primarily used for REST APIs?
A. HTTP
B. SSH
C. SAML
D. FTP
Answer: A
Explanation: REST APIs communicate over HTTP and often exchange data
in JSON or XML. SSH is for secure remote access, SAML is for authentication,
,and FTP is for file transfer.
8. Which cloud characteristic allows automatic scaling of
resources based on demand?
A. Elasticity
B. Multitenancy
C. Portability
D. Broad network access
Answer: A
Explanation: Elasticity lets cloud resources scale up or down depending on
demand. Multitenancy, portability, and broad network access describe
different capabilities unrelated to dynamic scaling.
9. Which aspect of cloud computing could conflict with legal
requirements that data cannot share infrastructure?
A. Elasticity
B. Multitenancy
C. Portability
D. Broad network access
Answer: B
Explanation: Multitenancy shares physical resources across multiple
tenants, which could violate strict legal requirements. Elasticity, portability,
and broad network access do not inherently share resources.
10. Which mechanism allows cloud administrators to
automate tasks across systems?
A. API calls
B. XML encoding
C. TLS encryption
D. Manual configuration
Answer: A
Explanation: APIs allow administrators to execute commands
programmatically across cloud systems. XML is for data encoding, TLS is for
encryption, and manual configuration does not enable automation.
11. What is a primary benefit of using a hybrid cloud for
disaster recovery?
A. No need for existing infrastructure
B. Ability to maintain critical services on-premises while using cloud
resources for backup
C. Eliminates all security responsibilities
, D. Reduces internet connectivity requirements
Answer: B
Explanation: Hybrid clouds allow organizations to keep core production
services on-premises and use the cloud for backup or failover. This ensures
continuity while leveraging scalable resources.
12. Which data protection requirement arises from service
contracts rather than law?
A. Regulated PII
B. Contractual PII
C. Jurisdictional PII
D. Legal PII
Answer: B
Explanation: Contractual PII obligations are defined by agreements
between organizations and providers. Regulated PII is legally mandated, not
contractual.
13. Which U.S. federal act focuses on IT security for federal
agencies?
A. HIPAA
B. SOX
C. FISMA
D. PCI DSS
Answer: C
Explanation: FISMA mandates federal agencies implement and monitor IT
security programs. HIPAA protects health data, SOX addresses financial
reporting, and PCI DSS is an industry standard.
14. Which of the following is an industry standard, not a
federal regulation?
A. HIPAA
B. PCI DSS
C. FISMA
D. SOX
Answer: B
Explanation: PCI DSS sets standards for organizations handling payment
card data. Unlike HIPAA, SOX, and FISMA, it is not legally mandated by the
federal government.
15. What is the main purpose of TLS in cloud
communications?
