Certified Information Systems Security Professional (CISSP) — Question 426

Which of the following statements BEST describes least privilege principle in a cloud environment?

Answer options

• A. A single cloud administrator is configured to access core functions.
• B. Internet traffic is inspected for all incoming and outgoing packets.
• C. Routing configurations are regularly updated with the latest routes.
• D. Network segments remain private if unneeded to access the internet.

Correct answer: D

Explanation

The correct answer is D because the least privilege principle aims to limit access to only what is necessary, ensuring that network segments remain private unless they require internet access. Options A, B, and C do not accurately reflect the concept of least privilege, as they focus on access control, traffic inspection, and routing without emphasizing the importance of minimal access rights.