CompTIA Cloud+ (CV0-002) — Question 107

A large law firm is migrating all of its systems to the cloud to meet growing business needs. The firm wants to reduce IT staff while maintaining day-to-day operations, such as user provisioning, folder management, and permissions. Which of the following MUST the cloud provider and cloud customer implement to ensure user non-repudiation?

Answer options

• A. Server certificate
• B. Client-to-site VPN
• C. Two-factor authentication
• D. Single sign-on

Correct answer: B

Explanation

The correct answer is B, as a Client-to-site VPN provides a secure connection that ensures user actions can be traced back to a specific device, supporting non-repudiation. Options A, C, and D, while important for security and access control, do not specifically address the tracking and accountability of user actions necessary for non-repudiation.