AIIT Certified Cloud Services Developer CCSD Exam, Exams of Technology

This certification focuses on designing, developing, deploying, and maintaining cloud-based applications and services. The exam covers cloud architectures, APIs, microservices, containerization, serverless computing, DevOps integration, security in cloud development, scalability, and performance optimization. It is intended for developers and engineers building applications on public, private, or hybrid cloud platforms.

Typology: Exams

2025/2026

Available from 01/21/2026

shilpi-jain-2
shilpi-jain-2 🇮🇳

1

(1)

25K documents

1 / 91

Toggle sidebar

This page cannot be seen from the preview

Don't miss anything!

bg1
AIIT Certified Cloud Services Developer
CCSD Exam
**Question 1.** Which cloud characteristic describes the ability to provision resources
automatically without human interaction?
A) Broad network access
B) Ondemand selfservice
C) Multitenancy
D) Rapid elasticity
Answer: B
Explanation: Ondemand selfservice allows users to provision compute, storage, and
networking resources automatically via a portal or API.
**Question 2.** In the evolution of cloud computing, which model most directly replaced
traditional onpremise data centers for many enterprises?
A) Grid computing
B) Virtual private network (VPN)
C) Public cloud IaaS
D) Peertopeer networking
Answer: C
Explanation: Public cloud Infrastructure as a Service (IaaS) provides scalable compute, storage,
and networking, enabling organizations to move workloads from onpremise data centers.
**Question 3.** Which of the following is *not* a core service model defined by the NIST cloud
definition?
A) IaaS
B) PaaS
C) SaaS
D) DaaS (Desktop as a Service)
pf3
pf4
pf5
pf8
pf9
pfa
pfd
pfe
pff
pf12
pf13
pf14
pf15
pf16
pf17
pf18
pf19
pf1a
pf1b
pf1c
pf1d
pf1e
pf1f
pf20
pf21
pf22
pf23
pf24
pf25
pf26
pf27
pf28
pf29
pf2a
pf2b
pf2c
pf2d
pf2e
pf2f
pf30
pf31
pf32
pf33
pf34
pf35
pf36
pf37
pf38
pf39
pf3a
pf3b
pf3c
pf3d
pf3e
pf3f
pf40
pf41
pf42
pf43
pf44
pf45
pf46
pf47
pf48
pf49
pf4a
pf4b
pf4c
pf4d
pf4e
pf4f
pf50
pf51
pf52
pf53
pf54
pf55
pf56
pf57
pf58
pf59
pf5a
pf5b

Partial preview of the text

Download AIIT Certified Cloud Services Developer CCSD Exam and more Exams Technology in PDF only on Docsity!

CCSD Exam

Question 1. Which cloud characteristic describes the ability to provision resources automatically without human interaction? A) Broad network access B) On‑demand self‑service C) Multi‑tenancy D) Rapid elasticity Answer: B Explanation: On‑demand self‑service allows users to provision compute, storage, and networking resources automatically via a portal or API. Question 2. In the evolution of cloud computing, which model most directly replaced traditional on‑premise data centers for many enterprises? A) Grid computing B) Virtual private network (VPN) C) Public cloud IaaS D) Peer‑to‑peer networking Answer: C Explanation: Public cloud Infrastructure as a Service (IaaS) provides scalable compute, storage, and networking, enabling organizations to move workloads from on‑premise data centers. Question 3. Which of the following is not a core service model defined by the NIST cloud definition? A) IaaS B) PaaS C) SaaS D) DaaS (Desktop as a Service)

CCSD Exam

Answer: D Explanation: NIST defines three primary service models: Infrastructure, Platform, and Software as a Service. Desktop as a Service is a specialized offering, not a core model. Question 4. A company wants to keep sensitive data on‑premise while using cloud resources for burst workloads. Which deployment model best fits this need? A) Public cloud B) Private cloud C) Hybrid cloud D) Multi‑cloud Answer: C Explanation: Hybrid cloud combines private (on‑premise) resources with public cloud services, allowing workload bursting while retaining control of sensitive data. Question 5. Which hypervisor type runs directly on the hardware without a host operating system? A) Type 1 B) Type 2 C) Hosted D) Container‑based Answer: A Explanation: Type 1 (bare‑metal) hypervisors are installed directly on server hardware, providing better performance and isolation than Type 2 hypervisors. Question 6. In container technology, what is the primary difference between a virtual machine (VM) and a container? A) VMs share the host OS kernel, containers do not.

CCSD Exam

Question 9. Which of the following is a key principle of the Twelve‑Factor App methodology? A) Monolithic architecture B) Tight coupling of services C) Store config in the environment D) Hard‑code credentials in source code Answer: C Explanation: The Twelve‑Factor App recommends storing configuration in environment variables to keep codebase portable across environments. Question 10. When designing a microservices architecture, which pattern helps to decouple services and improve resilience? A) Synchronous REST calls only B) Direct database sharing C) Event‑driven messaging D) Single shared memory cache Answer: C Explanation: Event‑driven messaging allows services to communicate asynchronously, reducing tight coupling and improving fault tolerance. Question 11. Which serverless offering executes user‑provided code in response to events without provisioning servers? A) AWS EC B) Azure Virtual Machines C) Google Cloud Functions D) Kubernetes Pods

CCSD Exam

Answer: C Explanation: Cloud Functions (or AWS Lambda, Azure Functions) run code on demand in response to triggers, abstracting away server management. Question 12. In Docker, which command creates a new image layer by adding a file from the host into the image? A) docker run B) docker commit C) docker cp D) docker build (COPY instruction) Answer: D Explanation: The Dockerfile COPY instruction adds files from the host into the image during the docker build process, creating a new layer. Question 13. Which Kubernetes object is responsible for maintaining a stable set of replica Pods? A) Service B) ConfigMap C) Deployment D) Ingress Answer: C Explanation: A Deployment defines the desired number of Pod replicas and handles rolling updates, ensuring the specified number of Pods are running. Question 14. In Kubernetes, what does an Ingress resource primarily provide? A) Persistent storage for Pods

CCSD Exam

Question 17. Which cloud provider’s CLI is named “az”? A) Amazon Web Services (AWS) B) Google Cloud Platform (GCP) C) Microsoft Azure D) IBM Cloud Answer: C Explanation: The Azure CLI executable is called “az,” used to manage Azure resources from the command line. Question 18. Which messaging service is a fully managed, highly scalable queue offering from AWS? A) Azure Service Bus B) Google Pub/Sub C) Amazon SQS D) RabbitMQ Answer: C Explanation: Amazon Simple Queue Service (SQS) provides a fully managed, scalable message queuing service. Question 19. In cloud security, which principle states that users should receive only the permissions necessary to perform their job? A) Defense in depth B) Principle of least privilege (PoLP) C) Zero trust D) Role‑based segregation Answer: B

CCSD Exam

Explanation: PoLP restricts user access to the minimum required privileges, reducing the attack surface. Question 20. Which IAM model assigns permissions based on user attributes such as department or clearance level? A) Role‑Based Access Control (RBAC) B) Discretionary Access Control (DAC) C) Attribute‑Based Access Control (ABAC) D) Mandatory Access Control (MAC) Answer: C Explanation: ABAC evaluates policies based on attributes (e.g., department, location) rather than fixed roles. Question 21. Which authentication factor is considered “something you have”? A) Password B) Fingerprint C) Smart card D) Security question answer Answer: C Explanation: “Something you have” refers to a physical token such as a smart card or hardware token. Question 22. Which encryption algorithm is commonly used for data‑at‑rest protection in cloud storage services? A) RSA‑ 4096 B) AES‑ 256

CCSD Exam

A) AWS CloudFormation B) HashiCorp Vault C) Terraform D) Docker Compose Answer: B Explanation: HashiCorp Vault securely stores, rotates, and controls access to secrets. Question 26. Under GDPR, which of the following is a required right of EU data subjects? A) Right to free cloud services B) Right to be forgotten (data erasure) C) Right to unlimited data storage D) Right to modify provider contracts Answer: B Explanation: GDPR grants individuals the right to have their personal data erased under certain conditions. Question 27. In the shared responsibility model for IaaS, which party is primarily responsible for patching the guest operating system? A) Cloud provider B.1) Cloud provider only B) Cloud customer C) Both provider and customer equally Answer: B Explanation: In IaaS, the provider secures the underlying infrastructure, while the customer manages the OS, applications, and data.

CCSD Exam

Question 28. Which AWS service captures API activity for audit and compliance purposes? A) Amazon CloudWatch B) AWS Config C) AWS CloudTrail D) AWS GuardDuty Answer: C Explanation: CloudTrail records API calls made in an AWS account, providing an audit trail for security analysis. Question 29. Which cloud deployment model involves using services from multiple public cloud providers simultaneously? A) Public cloud B) Private cloud C) Hybrid cloud D) Multi‑cloud Answer: D Explanation: Multi‑cloud refers to leveraging two or more public cloud platforms to avoid vendor lock‑in or improve resilience. Question 30. Which of the following best describes “rapid elasticity” in cloud computing? A) Ability to quickly provision and de‑provision resources as demand changes B) Fixed capacity that never changes C) Manual scaling of servers by administrators D) Long‑term contracts for resource usage Answer: A

CCSD Exam

D) You must provision fixed compute capacity beforehand. Answer: B Explanation: Serverless platforms charge based on the actual execution time of functions, not on pre‑provisioned capacity. Question 34. Which protocol is most commonly used for asynchronous message delivery in Google Cloud Pub/Sub? A) HTTP/1. B) AMQP C) gRPC D) MQTT Answer: C Explanation: Google Cloud Pub/Sub uses gRPC for high‑performance, bi‑directional streaming of messages. Question 35. Which of the following is a characteristic of a “private cloud”? A) Resources are shared across multiple unrelated organizations. B) Services are delivered over the public internet only. C) Infrastructure is dedicated to a single organization. D) No virtualization is used. Answer: C Explanation: Private clouds provide dedicated infrastructure for a single organization, often hosted on‑premise or in a dedicated data center. Question 36. Which Azure service provides a managed Kubernetes environment? A) Azure Container Instances

CCSD Exam

B) Azure Service Fabric C) Azure Kubernetes Service (AKS) D) Azure Functions Answer: C Explanation: Azure Kubernetes Service (AKS) offers a fully managed Kubernetes control plane. Question 37. Which of the following is a best practice when storing API keys in a containerized application? A) Hard‑code them in source code. B) Store them in environment variables passed at runtime. C) Include them in Dockerfile COPY statements. D) Write them to a public log file. Answer: B Explanation: Passing secrets via environment variables (or secret management tools) avoids embedding them in images or source code. Question 38. Which AWS IAM policy element defines the actions that are allowed or denied? A) Resource B) Effect C) Action D) Condition Answer: C Explanation: The “Action” element specifies which API operations the policy applies to.

CCSD Exam

Explanation: Cloud SQL is a fully managed relational database service for MySQL, PostgreSQL, and SQL Server. Question 42. Which security model assumes that no network traffic is trusted, even inside the corporate perimeter? A) Defense in depth B) Zero trust C) Perimeter security D) Network segmentation Answer: B Explanation: Zero trust requires verification for every access request, regardless of location. Question 43. Which AWS service is specifically designed for secret rotation and secure storage of database credentials? A) AWS KMS B) AWS Secrets Manager C) Amazon RDS D) AWS IAM Answer: B Explanation: Secrets Manager stores, rotates, and retrieves secrets such as database passwords. Question 44. Which of the following is a primary benefit of using Infrastructure as Code (IaC) tools like Terraform? A) Manual configuration of each server B) Immutable infrastructure and version control C) Eliminating the need for monitoring

CCSD Exam

D) Avoiding all security audits Answer: B Explanation: IaC enables declarative, version‑controlled definitions of infrastructure, promoting reproducibility and immutability. Question 45. Which of the following best defines “broad network access” in the cloud context? A) Access limited to on‑premise LAN only B) Availability via standard protocols such as HTTP/HTTPS from anywhere C) Exclusive access through a VPN tunnel D) Access only from specific IP ranges Answer: B Explanation: Broad network access means cloud services are reachable over the internet using standard protocols. Question 46. Which of the following is a key difference between PaaS and SaaS? A) PaaS provides a complete application to end users, SaaS provides a development platform. B) SaaS abstracts the entire stack, while PaaS still requires developers to manage the application code. C) PaaS requires users to manage hardware, SaaS does not. D) SaaS is only for on‑premise deployments. Answer: B Explanation: SaaS delivers a finished application; PaaS gives developers a platform to build and run their own applications. Question 47. Which of the following is a typical characteristic of a “cold” standby disaster‑recovery site?

CCSD Exam

Question 50. Which Azure service provides a globally distributed, highly available message queue? A) Azure Event Hubs B) Azure Queue Storage C) Azure Service Bus D) Azure Notification Hubs Answer: C Explanation: Azure Service Bus offers reliable, ordered messaging with topics and subscriptions for enterprise scenarios. Question 51. Which of the following is the most appropriate AWS service to host a static website? A) Amazon EC B) Amazon S C) AWS Lambda D) Amazon RDS Answer: B Explanation: S3 static website hosting serves HTML, CSS, and JavaScript directly from an object store. Question 52. Which encryption method uses a pair of keys: one public and one private? A) AES B) RSA C) DES D) MD

CCSD Exam

Answer: B Explanation: RSA is an asymmetric algorithm that utilizes a public key for encryption and a private key for decryption. Question 53. Which of the following is a feature of the “cloud‑native” approach? A) Monolithic codebases with tight coupling B) Manual provisioning of servers for each release C) Immutable infrastructure and containerization D) Storing configuration in source code files Answer: C Explanation: Cloud‑native emphasizes immutable infrastructure, containers, and automation. Question 54. Which of the following AWS services provides a managed NoSQL database? A) Amazon Aurora B) Amazon DynamoDB C) Amazon Redshift D) Amazon RDS PostgreSQL Answer: B Explanation: DynamoDB is a fully managed key‑value and document NoSQL database. Question 55. In the context of IAM, what does “policy inheritance” refer to? A) A user automatically gets all permissions from the root account. B) Permissions granted at a higher level (e.g., group) apply to members (e.g., users). C) Policies are inherited from the operating system. D) IAM policies cannot be inherited.