A virtual private cloud (VPC) is the logical division of a service provider's public cloud multi-tenant architecture to support private cloud computing.
https://www.techtarget.com/searchcloudcomputing/definition/virtual-private-cloud-VPC
The correct answer is: C. Virtual private cloud (VPC)
âś… Explanation:
In a multi-tenant cloud environment, multiple customers (tenants) share the same physical infrastructure. To ensure logical separation and secure access to assets, a Virtual Private Cloud (VPC) provides an isolated section of the cloud where resources can be securely provisioned, managed, and accessed. VPCs allow tenants to define their own IP address ranges, subnets, route tables, and network gateways — ensuring logical access control and segmentation from other tenants.
🔍 Why not the others?
A. Controlled configuration management (CM): Important for system integrity and change tracking, but not focused on logical access control in a multi-tenant setup.
B. Transparency/Auditability of administrative access: Helps with monitoring and compliance, but doesn’t itself secure logical access.
D. Hybrid cloud: A deployment model combining private and public clouds; it doesn't inherently secure logical access in a multi-tenant public environment.
B. Transparency/Auditability of administrative access
B focuses directly on ensuring that administrative access is transparent and auditable, which helps maintain security and trust in a shared cloud environment.
A Virtual Private Cloud (VPC) is a network isolation mechanism provided by cloud service providers like Amazon Web Services (AWS) and Google Cloud Platform (GCP). It allows customers to create logically isolated sections within the cloud infrastructure. While VPCs provide network isolation, they primarily focus on network segmentation and isolation rather than securing logical access to assets within the VPC.
The question specifically asks about securing logical access to assets in a multi-tenant cloud environment. In this context, the transparency/auditability of administrative access is crucial because it involves monitoring and auditing who has access to assets and what actions they perform, ensuring that tenant resources are protected and access is controlled.
VPCs are important for network isolation and segmentation within a cloud environment, but they do not directly address securing logical access to assets. Therefore, the most appropriate answer to the question is:
B: Transparency/Auditability of administrative access.
ChatGPT says Transparency/Auditability. So ???? VPC is in cloud, but hybrid means both cloud and onprem. There are no VPCs in on prem... Still an open question...
One example of hybrid deployment to solve security issues is the development of virtual private cloud (VPC) services. Since a CSP can use any combination of physical and software-defined networks, it can virtually segment and isolate a specific customer’s cloud within a larger public cloud to prevent one from affecting the other. The customer also benefits from more control over network configuration and security. VPCs can enhance public cloud security, but only if customers and providers configure and maintain them securely.
Answer is Correct
"VPC customers can run code, store data, host websites, and do anything else they could do in an ordinary private cloud, but the private cloud is hosted remotely by a public cloud provider. (Not all private clouds are hosted in this fashion.) VPCs combine the scalability and convenience of public cloud computing with the data isolation of private cloud computing."
https://www.cloudflare.com/it-it/learning/cloud/what-is-a-virtual-private-cloud/
upvoted 3 times
...
This section is not available anymore. Please use the main Exam Page.CISSP Exam Questions
Log in to ExamTopics
Sign in:
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
rdy4u
Highly Voted 2Â years agoa_kto_to
Most Recent 2Â days, 23Â hours agoSoleandheel
10Â months, 3Â weeks agoSoleandheel
10Â months, 3Â weeks agoSoleandheel
10Â months, 3Â weeks agoded
1Â year, 4Â months agoDelab202
1Â year, 10Â months agojackdryan
1Â year, 5Â months agoJAckThePip
2Â years ago