WGU D320/CCSP COMPUTER SECURITY AND
RELIABILITY REVISED EDITION WITH CORRECT
ANSWERS!!
1. Management Plane Usage
The management plane is responsible for administering cloud
environments and performing administrative operations, especially on
hypervisors.
Question: What does the management plane typically rely on for
orchestration?
A. APIs
B. Scripts
C. TLS
D. XML
Answer: A. APIs – The management plane relies on APIs to execute remote
operations across multiple management systems, most notably
hypervisors. This enables centralized administration, often through a web
portal, to coordinate tasks across the enterprise. Scripts may be used to
trigger API calls but are not the primary interaction method. XML provides
a data formatting standard, and TLS encrypts communication, but neither
is the main orchestration mechanism.
2. PII Compliance
When handling Personally Identifiable Information (PII), some categories
involve strict requirements that can result in legal consequences if not
met.
Question: Which category applies when laws and regulations enforce
penalties for non-compliance?
,A. Contractual
B. Jurisdictional
C. Regulated
D. Legal
Answer: C. Regulated – Regulated PII is defined by laws and government
regulations. Failing to protect this data can result in legal action.
Contractual obligations come from agreements between cloud providers
and customers, usually leading to financial or contractual penalties rather
than legal ones. Terms like "legal" or "jurisdictional" are related but not th
formal terminology used.
3. U.S. Regulatory Systems
Although the U.S. does not enforce one single privacy law, several sector-
specific regulations apply.
Question: Which of the following is not a federal regulation?
A. HIPAA
B. SOX
C. FISMA
D. PCI DSS
Answer: D. PCI DSS – The Payment Card Industry Data Security Standard i
an industry standard, not a federal law. In contrast, SOX governs financial
transparency, HIPAA covers health data protection, and FISMA addresses
information security for federal systems.
4. Disaster Recovery via Cloud
,Your company president asks you to implement cloud services for disaster
recovery.
Question: Which deployment model best supports this?
A. Hybrid
B. Private
C. Community
D. Public
Answer: A. Hybrid – A hybrid approach combines existing infrastructure
with cloud resources, providing resilience and recovery options. Public,
private, and community models don’t fit this recovery-specific requiremen
as effectively.
5. Cloud Limitation for Strict Data Rules
If regulations require data isolation, preventing it from sharing systems
with other applications:
Question: Which cloud characteristic creates a problem?
A. Multitenancy
B. Broad network access
C. Portability
D. Elasticity
Answer: A. Multitenancy – This feature allows multiple customers to share
the same infrastructure. Despite safeguards, resources are still shared,
which may violate strict compliance requirements.
,6. REST API Protocol
REST APIs are widely adopted for client-server communications.
Question: Which protocol underpins REST?
A. HTTP
B. SSH
C. SAML
D. XML
Answer: A. HTTP – REST is built on HTTP and supports multiple data types.
XML and SAML are data exchange standards, while SSH is for secure
remote access, not REST communications.
7. Data Lifecycle – Create Phase
Question: Which action does not fall under the create phase of the data
lifecycle?
A. Modify data
B. Modify metadata
C. New data
D. Import data
Answer: B. Modify metadata – Changing metadata doesn’t alter the actual
data. The create phase covers new, imported, or modified data values, bu
not simple metadata updates.
8. SOAP API Data Format
RELIABILITY REVISED EDITION WITH CORRECT
ANSWERS!!
1. Management Plane Usage
The management plane is responsible for administering cloud
environments and performing administrative operations, especially on
hypervisors.
Question: What does the management plane typically rely on for
orchestration?
A. APIs
B. Scripts
C. TLS
D. XML
Answer: A. APIs – The management plane relies on APIs to execute remote
operations across multiple management systems, most notably
hypervisors. This enables centralized administration, often through a web
portal, to coordinate tasks across the enterprise. Scripts may be used to
trigger API calls but are not the primary interaction method. XML provides
a data formatting standard, and TLS encrypts communication, but neither
is the main orchestration mechanism.
2. PII Compliance
When handling Personally Identifiable Information (PII), some categories
involve strict requirements that can result in legal consequences if not
met.
Question: Which category applies when laws and regulations enforce
penalties for non-compliance?
,A. Contractual
B. Jurisdictional
C. Regulated
D. Legal
Answer: C. Regulated – Regulated PII is defined by laws and government
regulations. Failing to protect this data can result in legal action.
Contractual obligations come from agreements between cloud providers
and customers, usually leading to financial or contractual penalties rather
than legal ones. Terms like "legal" or "jurisdictional" are related but not th
formal terminology used.
3. U.S. Regulatory Systems
Although the U.S. does not enforce one single privacy law, several sector-
specific regulations apply.
Question: Which of the following is not a federal regulation?
A. HIPAA
B. SOX
C. FISMA
D. PCI DSS
Answer: D. PCI DSS – The Payment Card Industry Data Security Standard i
an industry standard, not a federal law. In contrast, SOX governs financial
transparency, HIPAA covers health data protection, and FISMA addresses
information security for federal systems.
4. Disaster Recovery via Cloud
,Your company president asks you to implement cloud services for disaster
recovery.
Question: Which deployment model best supports this?
A. Hybrid
B. Private
C. Community
D. Public
Answer: A. Hybrid – A hybrid approach combines existing infrastructure
with cloud resources, providing resilience and recovery options. Public,
private, and community models don’t fit this recovery-specific requiremen
as effectively.
5. Cloud Limitation for Strict Data Rules
If regulations require data isolation, preventing it from sharing systems
with other applications:
Question: Which cloud characteristic creates a problem?
A. Multitenancy
B. Broad network access
C. Portability
D. Elasticity
Answer: A. Multitenancy – This feature allows multiple customers to share
the same infrastructure. Despite safeguards, resources are still shared,
which may violate strict compliance requirements.
,6. REST API Protocol
REST APIs are widely adopted for client-server communications.
Question: Which protocol underpins REST?
A. HTTP
B. SSH
C. SAML
D. XML
Answer: A. HTTP – REST is built on HTTP and supports multiple data types.
XML and SAML are data exchange standards, while SSH is for secure
remote access, not REST communications.
7. Data Lifecycle – Create Phase
Question: Which action does not fall under the create phase of the data
lifecycle?
A. Modify data
B. Modify metadata
C. New data
D. Import data
Answer: B. Modify metadata – Changing metadata doesn’t alter the actual
data. The create phase covers new, imported, or modified data values, bu
not simple metadata updates.
8. SOAP API Data Format
