Certified Ethical Hacker (CEH v13) — Question 248

You are a cloud security expert at CloudGuard Inc. working with a client who plans to transition their infrastructure to a public cloud. The client expresses concern about potential data breaches and wants to ensure that only authorized personnel can access certain sensitive resources. You propose implementing a Zero Trust security model. Which of the following best describes how the Zero Trust model would enhance the security of their cloud resources?

Answer options

• A. It operates on the principle of least privilege, verifying each request as if it is from an untrusted source, regardless of its location.
• B. It encrypts all data stored in the cloud, ensuring only authorized users can decrypt it.
• C. It uses multi-factor authentication for all user accounts.
• D. It ensures secure data transmission by implementing SSL/TLS protocols.

Correct answer: A

Explanation

The correct answer, A, highlights the core principle of the Zero Trust model, which is to treat every request as untrusted and to verify it, thereby enhancing security. Options B, C, and D, while important security measures, do not encapsulate the essence of the Zero Trust model, which focuses on continuous verification and least privilege access.