Cloud Services Benefits

Questions and Answers

What is one of the benefits of using cloud services?

Not having to worry about infrastructure, networking, and virtual machines (correct)

Having to install applications on personal devices

Having to manage security concerns personally

Having full control over the infrastructure

What is a potential security concern with using cloud services?

Having to manage too many service providers

Having to purchase additional software

Having to rely on service providers for security (correct)

Having to upgrade personal devices

What is an example of a requirement for storing customer data in the cloud?

Storing data in a specific geographic location (correct)

Using a specific encryption method

Having a specific number of users

Using a specific operating system

What is a potential consequence of poor security by a cloud service provider?

Data leakage or theft

What is the main concern with relying on a cloud service provider for security?

The provider may not have top-notch security

What can happen if a cloud service provider's security is compromised?

Customer data can be leaked or stolen

What is an example of a resource that provides information on cybersecurity attacks?

informationisbeautiful.net

What is a type of cybersecurity attack that can be filtered for on informationisbeautiful.net?

Ransomware

What is a primary concern when customers access cloud services through a browser with HTTPS?

Trusting the custodian of data

What is the goal when securing cloud services and cloud apps?

To ensure only authorized individuals access cloud services

What type of authentication is recommended to mitigate hacked account threats?

Multifactor authentication

What is the primary purpose of a firewall's decryption wizardry in an HTTPS session?

To inspect traffic for malware and identify security threats

What is referred to as an insider threat?

A user who has credentials compromising the system

What is the main goal of using controllers in network management?

To improve network security by managing devices

What system is used to prevent the leak or movement of sensitive data?

Data Loss Prevention (DLP) system

What is an Application Programming Interface (API) primarily used for?

To provide a language for computer-to-computer communication

What is a risk when a user with malware on their computer accesses cloud services via a VPN?

The malware will also have access to the cloud services

What is a potential security concern when using weak or insecure APIs?

Increased security risks from unauthorized access

What is an effective method to prevent malware on computers?

Running antivirus software

What is a botnet typically used for?

To launch distributed denial of service attacks

What is a feature of a next-generation firewall?

SSL/TLS decryption

What type of security threat occurs when an authorized user intentionally extracts or leaks sensitive data?

Insider threat

What is the primary purpose of a command and control network in a botnet?

To issue commands to botnet machines for malicious activities

Why is it important to ensure that APIs are secure?

To prevent unauthorized access and configuration changes

What is a benefit of using HTTPS when accessing cloud services?

Protected and encrypted session

What is a common security threat in cloud services?

Both A and B

What is infrastructure as code?

A method of automating configuration changes using scripts

What is a distributed denial of service attack?

A concerted effort by multiple machines to attack a service

What is the primary concern when it comes to a distributed denial of service attack against a cloud service provider?

The potential for the attack to overwhelm the provider's infrastructure and resources

What type of attack involves exploiting a vulnerability in the cloud service provider's environment using zombie computers?

Botnet attack

What is the primary goal of a Restore Point Objective (RPO)?

To specify the point in time to which data can be restored

What is the primary concern when it comes to backups in a cloud service provider environment?

The ability to restore data in the event of a disaster

What is multi-tenancy in the context of cloud service providers?

Multiple customers sharing the same physical hardware

What is the significance of testing and validating backups in a cloud service provider environment?

To ensure that data can be restored in the event of a disaster

What is the primary responsibility when it comes to ensuring the integrity of customer data in a cloud service provider environment?

The customer using the service

What is the potential impact of a successful distributed denial of service attack on a cloud service provider?

Legitimate customers are unable to access the service

Study Notes

Cloud Security Concerns

• Data Breaches: Cloud service providers hold customer data, which can be leaked or stolen if not stored appropriately (e.g., encryption, geographical boundary compliance).
• Lack of Control: Reliance on service providers for security can lead to a handoff of control regarding security.

Authentication and Authorization

• Hacked Accounts: Unauthorized access to cloud services can occur through compromised user accounts (e.g., phishing, social engineering).
• Insider Threats: Authorized users with malicious intent can compromise the system.
• Multifactor Authentication: Essential to ensure authorized and authenticated users access cloud services.

Malware and Virus Protection

• Malware Infections: Malware can compromise end-user computers and infrastructure as a service (IaaS) in the cloud.
• Precautions: Run software on computers, use Host-based Intrusion Prevention System (HIPS) or antivirus software, and implement next-generation firewalls with SSL/TLS decryption.

API Security

• Weak APIs: Insecure or weak Application Programming Interfaces (APIs) can lead to configuration changes or further access.
• API Authentication: Essential to ensure secure authentication when controllers interact with devices using APIs.

Distributed Denial of Service (DDoS) Attacks

• Botnets: Army of infected computers can launch DDoS attacks, overwhelming cloud services, and rendering them unavailable.
• Service Provider Protection: Cloud service providers should have countermeasures to defend against DDoS attacks.

Backups and Recovery

• Importance of Backups: Regular backups ensure data recovery in case of disasters or data loss.
• Restore Point Objective (RPO): Determine the desired restore point to minimize data loss.
• Backup Validation: Test and validate backup capabilities to ensure data can be restored when needed.

Isolation and Segmentation

• Multi-Tenancy: Ensure service providers implement proper isolation and segmentation between customers to prevent access and impact on other customers' resources.

Description

Learn about the advantages of cloud services, including offloading work and relying on service providers for infrastructure and expertise.