C. Cloud service provider
In all three cloud deployment models—Infrastructure as a Service (IaaS), Platform as a Service (PaaS), and Software as a Service (SaaS)—the cloud service provider is responsible for maintaining and patching the underlying infrastructure, which includes the hypervisor layer. The hypervisor is essential for virtualization, allowing multiple virtual machines to run on a single physical machine. Its maintenance is critical to the security and performance of the cloud environment, so the cloud service provider manages and patches the hypervisor to ensure its security and reliability.
In all three cloud deployment models, (IaaS, PaaS, and SaaS), who is responsible for the patching of the hypervisor layer?
A. Cloud service customer
B. Shared responsibility
C. Cloud service provider Most Voted
D. Patching on hypervisor layer is not required
Response is C.
Page 197 of the CCAK Study Guide
In general terms, the IaaS provider is in charge of the security of the virtualization infrastructure (e.g. physical security measures, network segregations, ensuring isolation, hardening the hypervisor).
C, Examples of controls that are usually the responsibility of the cloud provider follow (page 43 CCAK):
Physical security of the data center
Security of the hosts and hypervisor layers
Background checks of provider employees
Access of providers employees to customer data
In all three cloud deployment models (IaaS, PaaS, and SaaS), the cloud service provider is responsible for the patching of the hypervisor layer. The hypervisor layer is the layer that provides virtualization capabilities to the cloud infrastructure, and it is typically managed by the cloud service provider. Patching the hypervisor layer is critical to ensure the security and stability of the cloud infrastructure, and it is the responsibility of the cloud service provider to perform this task.
While the customer does have some responsibility in terms of securing their own applications and data, the patching of the hypervisor layer falls under the responsibility of the cloud service provider. This is because the hypervisor layer is a shared resource that is used by multiple customers in the cloud environment, and any vulnerabilities in this layer could potentially affect all customers.
This section is not available anymore. Please use the main Exam Page.CCAK Exam Questions
Log in to ExamTopics
Sign in:
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
Auditor2020
2 months, 3 weeks agoAuditor2020
2 months, 3 weeks ago339dfab
7 months, 2 weeks agocarlosdfr3
1 year, 1 month agoMJORGER
2 years agoa5g
2 years, 1 month agosurvivalkit
2 years, 1 month agoPCTAN
2 years, 7 months ago