Question 1

Which component of the 4Cs of Cloud Native Security is directly responsible for implementing security policies and controls within the application code to prevent vulnerabilities?

Options :

A : Code Security

B : Container Security

C : Cloud Infrastructure Security

D : Cluster Security

Answer: A

Question 2

Which of the following is a key benefit of implementing a Service Mesh in a cloud-native application architecture from a security perspective?

Options :

A : Automatic scaling of application resources

B : Simplified service discovery and load balancing

C : Enhanced traffic encryption and fine-grained access control

D : Reduced need for application-level logging

Answer: C

Question 3

What is the primary security advantage of using client certificate authentication for Kubernetes API server access?

Options :

A : To enable rapid deployment of Kubernetes resources

B : To provide a secure method of authentication that minimizes the risk of credential theft

C : To optimize the network traffic flow within the Kubernetes cluster

D : To facilitate the integration of Kubernetes with cloud-based storage services

Answer: B

Question 4

In the context of Kubernetes cluster security, how can the Scheduler component be secured to prevent unauthorized scheduling of pods?

Options :

A : By implementing Horizontal Pod Autoscaling for the Scheduler

B : By applying Network Policies specific to the Scheduler

C : By enforcing Role-Based Access Control (RBAC) for scheduling decisions

D : By using a Service Mesh to manage traffic to the Scheduler

Answer: C

Question 5

In Kubernetes, why is it important to configure Pod Security Admissions to audit mode?

Options :

A : To automatically scale pods based on the detected security risk

B : To evaluate the impact of proposed security policies without enforcing them

C : To enhance the data throughput performance of pods

D : To manage the allocation of persistent storage resources to pods

Answer: B