Question 1

Which of the following threat types can occur when an application does not properly validate input and can be leveraged to send users to malicious sites that appear to be legitimate?

Options :

A : Unvalidated redirects and forwards

B : Insecure direct object references

C : Security miscomfiguration

D : Sensitive data exposure

Answer: A

Question 2

When using an IaaS solution, what is a key benefit provided to the customer?

Options :

A : Metered and priced on the basis of units consumed

B : Increased energy and cooling system efficiencies

C : Transferred cost of ownership

D : The ability to scale up infrastructure services based on projected usage

Answer: A

Question 3

What type of PII is regulated based on the type of application or per the conditions of the specific hosting agreement?

Options :

A : Specific

B : Contractual

C : regulated

D : Jurisdictional

Answer: B

Question 4

Which of the following standards primarily pertains to cabling designs and setups in a data center?

Options :

A : IDCA

B : BICSI

C : NFPA

D : Uptime Institute

Answer: B

Question 5

Data labels could include all the following, except:

Options :

A : Distribution limitations

B : Multifactor authentication

C : Confidentiality level

D : Access restrictions

Answer: B