Alibaba ACA-Sec1 Exam Practice Test Instant Access

Question 1

Which of the following statements about cloud security shared responsibilities model are true? (the

number of correct answers: 2)

Afor users who is using IAAS service, they should be responsible for their business system which is
on top of cloud infrastructure

Bcloud service provider should guarantee the security of all physical infrastructure

Cthe damage caused by attacks leveraging security vulnerability in customers' application server
should be charged to cloud service provider

Dcloud user should also take care of some of the hardware maintenance and operation work

Answer : C, D

Question 2

Which of the following methods CANNOT increase account security?

AStrong password policies

BPeriodically reset the user login passwords

CAdhere to the minimum authorization principle

DUnite user management, permission management and resource management into a single
management process

Answer : D

Question 3

Which of the following options is the top 1 web application security risk based on OWASP 2017

report?

AXSS Attack

BServer Information Theft

CCode Execution

DSQL Injection

Answer : D

Question 4

Which of the following descriptions of the shared responsibilities security model is CORRECT?

AAfter beginning to use cloud service, the cloud service provider will become responsible for all of
the user's security.

BAfter beginning to use cloud service, the user and the cloud service provider will be jointly
responsible for cloud security, with each responsible for different layers of security.

CAfter beginning to use cloud service, users must still take care of physical and environmental
security.

DAfter beginning to use cloud service, users only need to pay attention to the security of their own
apps and data. All other security will be the responsibility of the cloud service provider.

Answer : B

Question 5

Which of the following security issues is considered by the OWASP to be the most dangerous issue

facing cloud computing?

AInjection

BAccount or service flow hijacking

CDenial of service

DMulti-tenant isolation failure

Answer : A

Question 6

CC attacks can cause serious damages. Which of the following statements about CC attack is

not correct?

Score 2

ACC attack will simulate real user requests

BWill consume massive sever side resource

CCC attack is done on network layer

DThe request generated by CC attack is hard to be distinguished from normal requests

Answer : C

Question 7

Which of the following 4 functions can be achieved through ECS security group

configuration?

Aallow specific IP to remote access ECS server

Bmake ECS server be able to defend 15Gb/s DDOS attack

Cfix XSS vulnerability

Dassign customized IP address to ECS

Answer : A

Alibaba ACA-Sec1 ACA Cloud Security Certification Exam Practice Test