Free CCSP Exam Braindumps

- (Exam Topic 1)
Which of the following is the optimal temperature for a data center, per the guidelines established by the America Society of Heating, Refrigeration, and Air Conditioning Engineers (ASHRAE)?

1. A. 69.8-86.0degF (21-30degC)
2. B. 64.4-80.6degF(18-27degC)
3. C. 51.8-66.2degF(11-19degC)
4. D. 44.6-60-8degF(7-16degC)

Correct Answer: B
The guidelines from ASHRAE establish 64.4-80.6degF (18-27degC) as the optimal temperature for a data center.

- (Exam Topic 2)
Which of the cloud cross-cutting aspects relates to the ability to reuse or move components of an application or service?

1. A. Availability
2. B. Interoperability
3. C. Reversibility
4. D. Portability

Correct Answer: B
Interoperability is the ease with which one can move or reuse components of an application or service. This is maximized when services are designed without specific dependencies on underlying platforms, operating systems, locations, or cloud providers.

- (Exam Topic 4)
Which cloud service category most commonly uses client-side key management systems?

1. A. Software as a Service
2. B. Infrastructure as a Service
3. C. Platform as a Service
4. D. Desktop as a Service

Correct Answer: A
SaaS most commonly uses client-side key management. With this type of implementation, the software for doing key management is supplied by the cloud provider, but is hosted and run by the cloud customer. This allows for full integration with the SaaS implementation, but also provides full control to the cloud customer. Although the cloud provider may offer software for performing key management to the cloud customers, with the Infrastructure, Platform, and Desktop as a Service categories, the customers would largely be responsible for their own options and implementations and would not be bound by the offerings from the cloud provider.

- (Exam Topic 4)
Which of the following is NOT a component of access control?

1. A. Accounting
2. B. Federation
3. C. Authorization
4. D. Authentication

Correct Answer: B
Federation is not a component of access control. Instead, it is used to allow users possessing credentials from other authorities and systems to access services outside of their domain. This allows for access and trust without the need to create additional, local credentials. Access control encompasses not only the key concepts of authorization and authentication, but also accounting. Accounting consists of collecting and maintaining logs for both authentication and authorization for operational and regulatory requirements.

- (Exam Topic 2)
What type of host is exposed to the public Internet for a specific reason and hardened to perform only that function for authorized users?

1. A. Proxy
2. B. Bastion
3. C. Honeypot
4. D. WAF

Correct Answer: B
A bastion host is a server that is fully exposed to the public Internet, but is extremely hardened to prevent attacks and is usually dedicated for a specific application or usage; it is not something that will serve multiple purposes. This singular focus allows for much more stringent security hardening and monitoring.