Advertisement
opexxx

CPE quiz3

Dec 16th, 2015
258
0
Never
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
Bash 4.51 KB | None | 0 0
  1. http://searchsecurity.com/quiz/Quiz-Identity-management-and-access-control-in-the-cloud
  2.  
  3.  
  4. YOUR SCORE: 5 out of 5 - Read the answers to the quiz below.   Get your CPE Credit
  5. QUESTION 1
  6. What is the Service Provisioning Markup Language used for?
  7.  
  8.     Starting up network services on a cloud system
  9.     Managing (setting up, amending and revoking) user or system access entitlements or data
  10.     Exchanging authentication and authorization data
  11.     Only correcting entitlements
  12.     Defining the language used to describe how a system is setup
  13.  
  14.  
  15. YOUR ANSWER - Managing (setting up, amending and revoking) user or system access entitlements or data
  16. CORRECT ANSWER - SPML is designed to allow automation of user or system access and entitlements in heterogeneous environments, in order to prevent lock-in to proprietary products.
  17.  
  18. MORE INFORMATION:
  19. Read more about SPML and identity management in the cloud.
  20.  
  21. QUESTION 2
  22. What is the Security Assertion Markup Language used for?
  23.  
  24.     Asserting ownership of a resource
  25.     Managing (setting up, amending and revoking) user or system access entitlements or data
  26.     Exchanging authentication and authorization data
  27.     Defining the security attributes of a system to inquirers
  28.     Writing identity provider programs
  29.  
  30.  
  31. YOUR ANSWER - Exchanging authentication and authorization data
  32. CORRECT ANSWER - SAML is an XML framework for exchanging authentication and authorization information.
  33.  
  34. MORE INFORMATION:
  35. Check out the top cloud provisioning and access management considerations.
  36.  
  37. QUESTION 3
  38. What is XACML used for?
  39.  
  40.     Enforcing permissions for resources
  41.     Exchanging authentication data
  42.     Encrypting authorization information
  43.     Creating accounts (Account Creation Meta Language)
  44.     Describing access control policies and how to interpret them
  45.  
  46.  
  47. YOUR ANSWER - Describing access control policies and how to interpret them
  48. CORRECT ANSWER - eXtensible Access Control Markup Language (XACML) is an XML schema for representing authorization and entitlement policies (i.e., access control policies), and contextual meaning (i.e., how to interpret them).
  49.  
  50. MORE INFORMATION:
  51. Get tips on maintaining security after a cloud computing implementation.
  52.  
  53. QUESTION 4
  54. Most cloud service providers (CSPs) support the following:
  55.  
  56.     Proprietary API
  57.     Proprietary API, SAML
  58.     Proprietary API, SAML, SPML
  59.     Proprietary API, SAML, SPML, XACML
  60.     SAML, SPML, XACML
  61.  
  62.  
  63. YOUR ANSWER - Proprietary API, SAML
  64. CORRECT ANSWER - Currently, most CSPs support their own APIs and a version of SAML. Most do not support SPML or XACML at this time.
  65.  
  66. MORE INFORMATION:
  67. For more information: Video interview: Google Apps security director discusses cloud data security strategies.
  68.  
  69. QUESTION 5
  70. Dynamic user provisioning includes everything except:
  71.  
  72.     Evaluating enterprise provisioning tool capabilities
  73.     Mapping entitlements between a CSP and the enterprise
  74.     Writing custom connectors
  75.     Managing users with the CSP management interface
  76.     Working with CSP to identify supported mechanisms
  77.  
  78.  
  79. YOUR ANSWER - Managing users with the CSP management interface
  80. CORRECT ANSWER - All other tasks are part of the process. The whole purpose of dynamic provisioning would be to alleviate the need for D.
  81.  
  82. MORE INFORMATION:
  83. Learn 10 key provisions in cloud computing contracts.
  84. MORE INFORMATION:
  85. Get tips on maintaining security after a cloud computing implementation.
  86.  
  87. QUESTION 4
  88. Most cloud service providers (CSPs) support the following:
  89.  
  90.     Proprietary API
  91.     Proprietary API, SAML
  92.     Proprietary API, SAML, SPML
  93.     Proprietary API, SAML, SPML, XACML
  94.     SAML, SPML, XACML
  95.  
  96.  
  97. YOUR ANSWER - Proprietary API, SAML, SPML, XACML
  98. CORRECT ANSWER - Proprietary API, SAML Currently, most CSPs support their own APIs and a version of SAML. Most do not support SPML or XACML at this time.
  99.  
  100. MORE INFORMATION:
  101. For more information: Video interview: Google Apps security director discusses cloud data security strategies.
  102.  
  103. QUESTION 5
  104. Dynamic user provisioning includes everything except:
  105.  
  106.     Evaluating enterprise provisioning tool capabilities
  107.     Mapping entitlements between a CSP and the enterprise
  108.     Writing custom connectors
  109.     Managing users with the CSP management interface
  110.     Working with CSP to identify supported mechanisms
  111.  
  112.  
  113. YOUR ANSWER - Evaluating enterprise provisioning tool capabilities
  114. CORRECT ANSWER - Managing users with the CSP management interface All other tasks are part of the process. The whole purpose of dynamic provisioning would be to alleviate the need for D.
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement