Latest CCSP Exam Questions

C.   

EAR

EAR is a Commerce Department program. Evaluation assurance levels are part of
the Common Criteria standard from ISO. Digital rights management tools are used for
protecting electronic processing of intellectual property.

B.   

Measured service

Business continuity and disaster recovery (BCDR) solutions largely sit idle until they are
actually needed. This traditionally has led to increased costs for an organization because
physical hardware must be purchased and operational but is not used. By using a cloud
system, an organization will only pay for systems when they are being used and only for
the duration of use, thus eliminating the need for extra hardware and costs. Portability is
the ability to easily move services among different cloud providers. Broad network access
allows access to users and staff from anywhere and from different clients, and although this
would be important for a BCDR situation, it is not the best answer in this case. On-demand
self-service allows users to provision services automatically and when needed, and
although this too would be important for BCDR situations, it is not the best answer because
it does not address costs or the biggest benefits to an organization.

D.   

ISO/IEC 27

Explanation:
ISO/IEC 27018 was implemented to address the protection of personal and sensitive
information within a cloud environment. ISO/IEC 27001 and its later 27001:2015 revision
are both general-purpose data security standards. ISO/IEC 19889 is an erroneous answer.

D.   

Legal liability can’t be transferred to the cloud provider.

Explanation:
State notification laws and the loss of proprietary data/intellectual property pre-existed the
cloud; only the lack of ability to transfer liability is new.

B.   

Copyright

Explanation:
Copyrights are protected tangible expressions of creative works. The other answers listed
are answers to subsequent questions

B.   

Stolen by hackers

The exposure of data by hackers is considered a data breach. Data loss focuses on the
data availability rather than security. Data loss occurs when data becomes lost,
unavailable, or destroyed, when it should not have been.

B.   

Use DRM and DLP solutions widely throughout the cloud operation

DRM and DLP are used for increased authentication/access control and egress monitoring,
respectively, and would actually decrease portability instead of enhancing it

B.   

The hardware vendor and software vendor are the same

With a Type 1 hypervisor, the management software and hardware are tightly tied
together and provided by the same vendor on a closed platform. This allows for optimal
security, performance, and support. The other answers are all incorrect descriptions of a
Type 1 hypervisor.

B.   

Tokenization

Explanation:
Tokenization involves the replacement of sensitive data fields with key or token values,
which can ultimately be mapped back to the original, sensitive data values. Masking refers
to the overall approach to covering sensitive data, and anonymization is a type of masking,
where indirect identifiers are removed from a data set to prevent the mapping back of data
to an individual. Encryption refers to the overall process of protecting data via key pairs
and protecting confidentiality.

A.   

Overwriting

The zeroing of data-or the writing of null values or arbitrary data to ensure deletion has
been fully completed-is officially referred to as overwriting. Nullification, deleting, and
blanking are provided as distractor terms.