Free CCSP Exam Braindumps

- (Exam Topic 2)
Which of the following service capabilities gives the cloud customer an established and maintained framework to deploy code and applications?

1. A. Software
2. B. Desktop
3. C. Platform
4. D. Infrastructure

Correct Answer: C
The platform service capability provides programming languages and libraries from the cloud provider, where the customer can deploy their own code and applications into a managed and controlled framework.

- (Exam Topic 1)
Which of the following roles involves overseeing billing, purchasing, and requesting audit reports for an organization within a cloud environment?

1. A. Cloud service user
2. B. Cloud service business manager
3. C. Cloud service administrator
4. D. Cloud service integrator

Correct Answer: B
The cloud service business manager is responsible for overseeing business and billing administration, purchasing cloud services, and requesting audit reports when necessary

- (Exam Topic 4)
Cryptographic keys should be secured ________.

1. A. To a level at least as high as the data they can decrypt
2. B. In vaults
3. C. With two-person integrity
4. D. By armed guards

Correct Answer: A
The physical security of crypto keys is of some concern, but guards or vaults are not always necessary.
Two-person integrity might be a good practice for protecting keys. The best answer to this question is option A, because it is always true, whereas the remaining options depend on circumstances.

- (Exam Topic 1)
What is the biggest concern with hosting a key management system outside of the cloud environment?

1. A. Confidentiality
2. B. Portability
3. C. Availability
4. D. Integrity

Correct Answer: C
When a key management system is outside of the cloud environment hosting the application, availability is a primary concern because any access issues with the encryption keys will render the entire application unusable.

- (Exam Topic 1)
From a legal perspective, what is the most important first step after an eDiscovery order has been received by the cloud provider?

1. A. Notification
2. B. Key identification
3. C. Data collection
4. D. Virtual image snapshots

Correct Answer: A
The contract should include requirements for notification by the cloud provider to the cloud customer upon the receipt of such an order. This serves a few important purposes. First, it keeps communication and trust open between the cloud provider and cloud customers. Second, and more importantly, it allows the cloud customer to potentially challenge the order if they feel they have the grounds or desire to do so.