CompTIA CompTIA Certifications CV0-003 Questions & Answers

• Question 31:

  A cloud administrator would like to maintain file integrity checks through hashing on a cloud object store. Which of the following is MOST suitable from a performance perspective?

  A. SHA-256

  B. SHA-512

  C. MD5

  D. AES

  Correct Answer: C

  The most suitable hashing algorithm from a performance perspective to maintain file integrity checks on a cloud object store is MD5 (Message Digest 5). MD5 is a hashing algorithm that generates a 128-bit hash value for any given input data. MD5 is faster and more efficient than other hashing algorithms, such as SHA-256 or SHA-512, which generate longer hash values and require more computational resources. MD5 can be used to verify the integrity of files by comparing their hash values before and after transmission or storage. Reference: CompTIA Cloud+ Certification Exam Objectives, Domain 2.0 Security, Objective 2.5 Given a scenario, apply data security techniques in the cloud.

• Question 32:

  A cloud administrator is investigating slow VM performance. The administrator has checked the physical server performance and has identified the host is under stress due to a peak usage workload. Which of the following is the NEXT step the administrator should complete?

  A. Perform a root cause analysis.

  B. Migrate the VM to a different host.

  C. Document the findings.

  D. Perform a system restart.

  Correct Answer: A

  Reference: https://docs.vmware.com/en/VMware-Smart-Assurance/10.1.7/deployment-scenarios/GUID-DD90BD68-5A04-405E-B532-5B928CA39CAE.html

• Question 33:

  A cloud administrator must ensure all servers are in compliance with the company's security policy. Which of the following should the administrator check FIRST?

  A. The application version

  B. The OS version

  C. Hardened baselines

  D. Password policies

  Correct Answer: C

  Reference: https://www.securitymetrics.com/blog/system-hardening-standards-how-comply-pci-requirement-22

• Question 34:

  A systems administrator needs to implement a way for users to verify software integrity. Which of the following tools would BEST meet the administrator's needs?

  A. TLS 1.3

  B. CRC32

  C. AES-256

  D. SHA-512

  Correct Answer: D

  Reference: https://en.wikipedia.org/wiki/SHA-2

• Question 35:

  An engineer is investigating potential performance issues in a hypervisor platform. When comparing the allocated versus actual resources, the engineer notices the platform is oversubscribed. Which of the following is MOST likely the immediate cause of the performance issues?

  A. Dynamic allocation

  B. Oversubscription

  C. Ballooning

  D. Transparent page sharing

  Correct Answer: B

  Reference: https://www.techtarget.com/searchitoperations/answer/How-do-I-size-capacity-for-VMware-oversubscription

• Question 36:

  A company is using an IaC deployment model to a public cloud IaaS. The automation runs partially and then fails to build a VM in the IaaS environment. Upon further assessment, the connectivity to the IaaS is confirmed. Which of the following are the MOST likely causes of the failure? (Choose two.)

  A. Insufficient account balance

  B. Network settings

  C. Resource tagging

  D. API request limits

  E. Administrator access

  F. Inadequate storage

  Correct Answer: BE

  Reference: https://www.ibm.com/topics/iaas-paas-saas

• Question 37:

  A cloud engineer recently used a deployment script template to implement changes on a cloud-hosted web application. The web application communicates with a managed database on the back end. The engineer later notices the web application is no longer receiving data from the managed database. Which of the following is the MOST likely cause of the issue?

  A. Misconfiguration in the user permissions

  B. Misconfiguration in the routing traffic

  C. Misconfiguration in the network ACL

  D. Misconfiguration in the firewall

  Correct Answer: D

  Reference: https://www.sunnyvalley.io/docs/network-security-tutorials/most-common-cause-of-firewall-failure

• Question 38:

  Based on the shared responsibility model, which of the following solutions passes the responsibility of patching the OS to the customer?

  A. PaaS

  B. DBaaS

  C. IaaS

  D. SaaS

  Correct Answer: C

  Reference: https://cloudsecurityalliance.org/blog/2020/08/26/shared-responsibility-model-explained/

• Question 39:

  Different healthcare organizations have agreed to collaborate and build a cloud infrastructure that should minimize compliance costs and provide a high degree of security and privacy, as per regulatory requirements. This is an example of a:

  A. private cloud.

  B. community cloud.

  C. hybrid cloud.

  D. public cloud.

  Correct Answer: B

  Reference: https://www.sciencedirect.com/topics/computer-science/community-cloud

• Question 40:

  An organization was preparing to harden an environment before granting access to external auditors. Vulnerability testing was completed, and only one low-priority, informational vulnerability remained outstanding:

  

  Two weeks later, the auditors review the system on a new machine without an existing browser cache. Credentials are not required when accessing the application login page. Which of the following tests were skipped, causing this issue?

  A. Functionality testing

  B. Usability testing

  C. Regression testing

  D. Penetration testing

  Correct Answer: D

  Reference: https://www.techtarget.com/searchsecurity/definition/penetration-testing