- (Exam Topic 4)
Which of the following is NOT a commonly used communications method within cloud environments to secure data in transit?

1. A. IPSec
2. B. HTTPS
3. C. VPN
4. D. DNSSEC

Correct Answer: D
DNSSEC is used as a security extension to DNS lookup queries in order to ensure the authenticity and authoritativeness of hostname resolutions, in order to prevent spoofing and redirection of traffic. Although it is a very important concept to be employed for security practices, it is not used to secure or encrypt data transmissions. HTTPS is the most commonly used security mechanism for data communications between clients and websites and web services. IPSec is less commonly used, but is also intended to secure communications between servers. VPN is commonly used to secure traffic into a network area or subnet for developers and administrative users.

- (Exam Topic 4)
Which of the following is NOT one of the official risk rating categories?

1. A. Critical
2. B. Low
3. C. Catastrophic
4. D. Minimal

Correct Answer: C
The official categories of cloud risk ratings are Minimal, Low, Moderate, High, and Critical.

- (Exam Topic 4)
Data labels could include all the following, except:

1. A. Multifactor authentication
2. B. Access restrictions
3. C. Confidentiality level
4. D. Distribution limitations

Correct Answer: A
All the others might be included in data labels, but multifactor authentication is a procedure used for access control, not a label.

- (Exam Topic 4)
What is the cloud service model in which the customer is responsible for administration of the OS?

1. A. QaaS
2. B. SaaS
3. C. PaaS
4. D. IaaS

Correct Answer: D
In IaaS, the cloud provider only owns the hardware and supplies the utilities. The customer is responsible for the OS, programs, and data. In PaaS and SaaS, the provider also owns the OS. There is no QaaS. That is a red herring.

- (Exam Topic 3)
Data center and operations design traditionally takes a tiered, topological approach.
Which of the following standards is focused on that approach and is prevalently used throughout the industry?

1. A. IDCA
2. B. NFPA
3. C. BICSI
4. D. Uptime Institute

Correct Answer: D
The Uptime Institute publishes the most widely known and used standard for data center topologies and tiers. The National Fire Protection Association (NFPA) publishes a broad range of fire safety and design standards for many different types of facilities. Building Industry Consulting Services International (BICSI) issues certifications for data center cabling. The International Data Center Authority (IDCA) offers the Infinity Paradigm, which takes a macro-level approach to data center design.