Home › BCA Cloud Computing › cloudcomputing › cloudsecurity › The defense-in-depth model recommends:
The defense-in-depth model recommends:
ADisabling authentication outside business hours
BLayering multiple independent security controls (physical, network, identity, app, data) so a single failure doesn't compromise the whole stack
CSpending the entire security budget on a single very expensive firewall
DRemoving all logs to deny attackers information
Answer & Solution
Correct answer: B. Layering multiple independent security controls (physical, network, identity, app, data) so a single failure doesn't compromise the whole stack
Defense-in-depth = many layers, so an attacker who breaks one still faces several more. Single-control investment, log deletion, and after-hours auth disabling are textbook anti-patterns.
Related questions
A workload makes outbound HTTP requests to update some on-prem inventory. The on-prem systAn auditor needs to know who deleted a critical database resource last week. Which type ofWhich security model assumes that no network location is inherently trusted and verifies eAn organisation wants a single sign-on across AWS, Microsoft 365, and Salesforce so users Why is rotating credentials (passwords, access keys, certificates) on a schedule a best prA virtual firewall that controls allowed inbound and outbound traffic on a single VM in a A cloud provider's shared responsibility model on IaaS typically states that:What does the principle of least privilege recommend when assigning permissions in any clo