According to NIST, what are the key mechanisms for defining,
managing, and enforcing policies in a ZTA?
A. Data access policy, public key infrastructure (PKI), and identity and access management (IAM)
B. Control plane, data plane, and application plane
C. Policy decision point (PDP), policy enforcement point (PEP), and
policy information point (PIP)
D. Policy engine (PE), policy administrator (PA), and policy broker (PB)
正解:C
解説: (Pass4Test メンバーにのみ表示されます)
質問 2:
How can ZTA planning improve the developer experience?
A. Streamlining access provisioning to deployment environments.
B. Use of a third-party tool for continuous integration/continuous
deployment (CI/CD) and deployments.
C. Require deployments to be grouped into quarterly batches.
D. Disallowing DevOps teams access to the pipeline or deployments.
正解:A
解説: (Pass4Test メンバーにのみ表示されます)
質問 3:
SDP incorporates single-packet authorization (SPA). After
successful authentication and authorization, what does the client
usually do next? Select the best answer.
A. Generates an SPA packet and sends it to the gateway.
B. Generates an SPA packet and sends it to the controller.
C. Generates an SPA packet and sends it to the initiating host.
D. Generates an SPA packet and sends it to the accepting host.
正解:D
解説: (Pass4Test メンバーにのみ表示されます)
質問 4:
In a continual improvement model, who maintains the ZT policies?
A. Policy administrators
B. Server administrators
C. System administrators
D. ZT administrators
正解:D
解説: (Pass4Test メンバーにのみ表示されます)
質問 5:
Which of the following is a required concept of single packet
authorizations (SPAs)?
A. An SPA packet must self-contain all necessary information.
B. An SPA packet must be digitally signed and authenticated.
C. An SPA header is encrypted and thus trustworthy.
D. Upon receiving an SPA, a server must respond to establish secure connectivity.
正解:A
解説: (Pass4Test メンバーにのみ表示されます)
Yanagisawa -
この一冊に絞ってもいいと思います。試験内容をしっかりまとめられています。CCZT参考書として、頼れる1冊です。