Response is C.
Page 197 of the CCAK Study Guide
In general terms, the IaaS provider is in charge of the security of the virtualization infrastructure (e.g. physical security measures, network segregations, ensuring isolation, hardening the hypervisor).
C, Examples of controls that are usually the responsibility of the cloud provider follow (page 43 CCAK):
Physical security of the data center
Security of the hosts and hypervisor layers
Background checks of provider employees
Access of providers employees to customer data
In all three cloud deployment models (IaaS, PaaS, and SaaS), the cloud service provider is responsible for the patching of the hypervisor layer. The hypervisor layer is the layer that provides virtualization capabilities to the cloud infrastructure, and it is typically managed by the cloud service provider. Patching the hypervisor layer is critical to ensure the security and stability of the cloud infrastructure, and it is the responsibility of the cloud service provider to perform this task.
While the customer does have some responsibility in terms of securing their own applications and data, the patching of the hypervisor layer falls under the responsibility of the cloud service provider. This is because the hypervisor layer is a shared resource that is used by multiple customers in the cloud environment, and any vulnerabilities in this layer could potentially affect all customers.
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
339dfab
4 weeks, 1 day agocarlosdfr3
7 months agoMJORGER
1 year, 5 months agoa5g
1 year, 7 months agosurvivalkit
1 year, 7 months agoPCTAN
2 years ago