exam questions

Exam CSSLP All Questions

View all questions & answers for the CSSLP exam

Exam CSSLP topic 1 question 33 discussion

Actual exam question from ISC's CSSLP
Question #: 33
Topic #: 1
[All CSSLP Questions]

The NIST Information Security and Privacy Advisory Board (ISPAB) paper "Perspectives on Cloud Computing and Standards" specifies potential advantages and disdvantages of virtualization. Which of the following disadvantages does it include? Each correct answer represents a complete solution. Choose all that apply.

  • A. It increases capabilities for fault tolerant computing using rollback and snapshot features.
  • B. It increases intrusion detection through introspection.
  • C. It initiates the risk that malicious software is targeting the VM environment.
  • D. It increases overall security risk shared resources.
  • E. It creates the possibility that remote attestation may not work.
  • F. It involves new protection mechanisms for preventing VM escape, VM detection, and VM-VM interference.
  • G. It increases configuration effort because of complexity and composite system.
Show Suggested Answer Hide Answer
Suggested Answer: It increases overall security risk shared resources, such as networks, clipboards, clocks, printers, desktop management, and folders. Answer: A and B are 🗳️
The potential security disadvantages of virtualization are as follows: It increases configuration effort because of complexity and composite system. It initiates the problem of how to prevent overlap while mapping VM storage onto host files. It introduces the problem of virtualizing the TPM. It creates the possibility that remote attestation may not work. It initiates the problem of detecting VM covert channels. It involves new protection mechanisms for preventing VM escape,
VM detection, and VM-VM interference. It initiates the possibility of virtual networking configuration errors. It initiates the risk that malicious software is targeting the VM environment. incorrect. These are not the disadvantages of virtualization, as described in the NIST Information Security and Privacy Advisory Board (ISPAB) paper
"Perspectives on Cloud Computing and Standards".

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
74gjd_37
5 months, 2 weeks ago
Selected Answer: CDEFG
The possible disadvantages of virtualization included in the NIST ISPAB paper are: C. It initiates the risk that malicious software is targeting the VM environment. D. It increases overall security risk shared resources. E. It creates the possibility that remote attestation may not work. F. It involves new protection mechanisms for preventing VM escape, VM detection, and VM-VM interference. G. It increases configuration effort because of complexity and composite system. The correct answers are: C, D, E, F, G.
upvoted 1 times
...
4e3rv21rq3vq2q
1 year, 8 months ago
Selected Answer: CDEFG
Correct Answer: CDEFG csrc.nist.gov/CSRC/media/Events/ISPAB-DECEMBER-2008-MEETING/documents/vmsec_ISPAB_L-Badger.pdf
upvoted 1 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
Loading ...
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago