Exam Paper: Cloud Security for MSc Students, Cork Institute of Technology, 2012, Exams of Security Analysis

An exam paper for a cloud security module in the msc in networking and security and msc in software development programs at the cork institute of technology. The exam consists of six questions, each worth 25 marks, and covers topics such as host profiles, vmware vmotion, identity and access management standards, enisa's cloud computing information assurance framework, kpmg data lifecycle, and cloud auditing. The exam duration is 2 hours and is scheduled for summer 2012.

Typology: Exams

2012/2013

Uploaded on 03/24/2013

anishay
anishay 🇮🇳

4.2

(25)

118 documents

1 / 3

Toggle sidebar

This page cannot be seen from the preview

Don't miss anything!

bg1
Page 1 of 3
CORK INSTITUTE OF TECHNOLOGY
INSTITIÚID TEICNEOLAÍOCHTA CHORCAÍ
Semester 2 Examinations 2011/2012
Module Title: Cloud Security
Module Code: COMP9035
School: Science & Informatics
Programme Title: MSc in Networking and Security
MSc in Software Development
Programme Code: KNSEC_9_Y5
KSDEV_9_Y5
External Examiner(s): Dr David White
Internal Examiner(s): Ms Gemma O’Callaghan
Instructions: Answer any 4 questions.
All questions carry 25 marks.
Duration: 2 Hours
Sitting: Summer 2012
Requirements for this examination:
Note to Candidates:
Please check the Programme Title and the Module Title to ensure that you have received the correct examination paper.
If in doubt please contact an Invigilator.
pf3

Partial preview of the text

Download Exam Paper: Cloud Security for MSc Students, Cork Institute of Technology, 2012 and more Exams Security Analysis in PDF only on Docsity!

CORK INSTITUTE OF TECHNOLOGY

INSTITIÚID TEICNEOLAÍOCHTA CHORCAÍ

Semester 2 Examinations 2011/

Module Title: Cloud Security

Module Code: COMP

School: Science & Informatics

Programme Title: MSc in Networking and Security MSc in Software Development

Programme Code: KNSEC_9_Y KSDEV_9_Y

External Examiner(s): Dr David White Internal Examiner(s): Ms Gemma O’Callaghan

Instructions: Answer any 4 questions. All questions carry 25 marks.

Duration: 2 Hours

Sitting: Summer 2012

Requirements for this examination:

Note to Candidates: Please check the Programme Title and the Module Title to ensure that you have received the correct examination paper. If in doubt please contact an Invigilator.

Question 1: Explain the use of Host Profiles when discussing Configuration/Change Management for virtualisation. [7 marks]

What is your understanding of VMware’s vMotion technology? Discuss how an attacker could launch a vMotion attack on data confidentiality. [18 marks]

Question 2: Evaluate the following Identity and Access Management Standards for Enterprise a) SAML (Service Assertion Mark-up Language) b) SPML (Service Provisioning Mark-up Language) c) XACML (eXstensible Access Control Mark-up Language) d) Oauth (Open Authentication) [16 marks]

Outline some of the challenges faced when implementing IAM in the cloud. [9 marks]

Question 3: ENISA have put together the “Cloud Computing Information Assurance Framework” for assessing moves to the cloud. It covers a large number of risk areas. Discuss in detail, the following areas of that framework: a) Personnel Security b) Supply Chain Assurance c) Audit Logs d) Physical Security [25 marks]