Certificate of Cloud Security Knowledge (CCSK) — Question 179

ENISA: To mitigate credential compromise or theft, cloud provider can implement:

Answer options

• A. HR background checks
• B. Hardening of virtual machines according to industry standard guidelines
• C. Data-at-rest encryption
• D. Portable applications using open APIs
• E. Anomaly detection capabilities

Correct answer: E

Explanation

The correct answer, E, addresses the proactive identification of unusual behavior that could indicate credential compromise, making it a key strategy. The other options focus on different aspects of security that do not directly address the detection of credential theft, such as HR checks and hardening techniques.