CCZT試験無料問題集（62題）「Cloud Security Alliance Certificate of Competence in Zero Trust (CCZT) 認定」

出題：1

What is a server exploitation threat that SDP features (server isolation, single packet authorization [SPA], and dynamic drop-all firewalls) protect against?

A. Denial of service (DoS)/distributed denial of service (DDoS) attacks

B. Domain name system (DNS) poisoning attacks

C. Certificate forgery attacks

D. Phishing attacks

正解：A 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：2

SDP incorporates single-packet authorization (SPA). After
successful authentication and authorization, what does the client
usually do next? Select the best answer.

A. Generates an SPA packet and sends it to the accepting host.

B. Generates an SPA packet and sends it to the initiating host.

C. Generates an SPA packet and sends it to the gateway.

D. Generates an SPA packet and sends it to the controller.

正解：A 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：3

To respond quickly to changes while implementing ZT Strategy, an
organization requires a mindset and culture of

A. continuous process improvement.

B. project governance.

C. continuous risk evaluation and policy adjustment.

D. learning and growth.

正解：C 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：4

How can we use ZT to ensure that only legitimate users can access
a SaaS or PaaS? Select the best answer.

A. Implementing micro-segmentation and mutual Transport Layer
Security (mTLS)

B. Configuring the security assertion markup language (SAML) service
provider only to accept requests from the designated ZT gateway

C. Enforcing multi-factor authentication (MFA) and single-sign on
(SSO)

D. Integrating behavior analysis and geofencing as part of ZT controls

正解：C 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：5

When preparing to implement ZTA, some changes may be required.
Which of the following components should the organization
consider as part of their checklist to ensure a successful
implementation?

A. Visibility and analytics integration and services accessed using mobile devices

B. Vulnerability scanning, patch management, change management,
and problem management

C. Incident management, business continuity planning (BCP), disaster
recovery (DR), and training and awareness programs

D. Organization's governance, compliance, risk management, and
operations

正解：D 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：6

For ZTA, what should be used to validate the identity of an entity?

A. Single sign-on

B. Multifactor authentication

C. Bio-metric authentication

D. Password management system

正解：B 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

CCZT試験無料問題集「Cloud Security Alliance Certificate of Competence in Zero Trust (CCZT) 認定」