AliCloud ACP-Sec1 ACP Cloud Security Professional Online Training
AliCloud ACP-Sec1 Online Training
The questions for ACP-Sec1 were last updated at Dec 24,2024.
- Exam Code: ACP-Sec1
- Exam Name: ACP Cloud Security Professional
- Certification Provider: AliCloud
- Latest update: Dec 24,2024
Alibaba Cloud CloudMonitor is a service that monitors Alibaba Cloud resources and Internet applications
Which of the following functions are currently provided by CloudMonitor? (Number of correct answers: 4)
- A . Custom firewall
- B . Alerting
- C . Site monitoring
- D . Cloud service monitoring
- E . Custom monitoring
More than one CNAME record is generated for the same domain name when Alibaba Cloud Anti-DDoS Premium Service Instance is purchased for load balancing purpose.
- A . True
- B . False
Data Risk Control feature has been integrated into Alibaba Cloud WAF. When this function is activated, a script must be embedded into the page that wishes to be protected under the corresponding domain name to check whether a client is trustworthy.
Which type of script is it?
- A . JavaScript
- B . C++
- C . Vbscript
- D . Java
When using Alibaba Cloud Anti-DDoS Service/WAF in China Mainland, you must finish ICP Filing beforehand.
- A . True
- B . False
The ScheduleKeyDeletion function lets you schedule a time to delete Key Management Service (KMS) keys.
How far in the future can a key deletion event be scheduled?
- A . 7 days
- B . 30 days
- C . 15 days
- D . 60 days
User A is the system administrator of a company, who often takes business trips to Shanghai Each time when he remotely logs on to the Shanghai an alert is reported, prompting "Someone is remotely logging on to the server Please pay attention to your server security"
Which of the following methods can be used to quickly and automatically resolve this issue?
- A . Open a ticket immediately to consult Alibaba Cloud engineers
- B . Log on to the Alibaba Cloud Security Center, and add a frequent logon location to the configuration item of Security Center.
- C . Ask the company leaders for help
- D . Call a friend, who is a famous hacker in the industry, for help.
There is a limit on the number of Customer Master Keys (CMKs) that users can create using Key Management Service (KMS), but users can raise this limit by submitting a support ticket to Alibaba Cloud.
- A . True
- B . False
A customer built his website on Alibaba Cloud- To defend against Web attacks he activated Alibaba Cloud WAF However, a week later, the customer finds that his website has suffered intrusion.
Which of the following actions should he take to ensure that WAF functions correctly and enhance system security? (Number of correct answers: 4)
- A . Use Security Center to remove Trojans and fix vulnerabilities
- B . Delete all snapshots and clear the server
- C . Secure other HTTP services on the ECS instance using WAF
- D . Configure a security group for the ECS instance.
- E . Check whether or not the DNS resolution results point to the WAF address
- F . Resolve the website domain name to the site s source IP address
Border Gateway Protocol (BGP) is mainly used for interconnection between autonomous systems (AS) on the Internet It. Controlling route transmission and selecting the best route Alibaba Cloud uses a BGP multi-line access mechanism for all its IDCs in China.
Which of the followings are advantages of a BGP multi-line IDC? (Number of correct answers 2)
- A . Larger bandwidth
- B . High-speed interconnection
- C . Low bandwidth cost
- D . Elimination of access barriers between North China and South China because China is big and North China and South China has different telecom operators
Cross Site Script (XSS) attacks refer to a kind of attack by tampering the webpage using HTML injection to insert malicious scripts so as to control the user’s browser when the user browses the webpage XSS vulnerabilities may be used for user identity stealing (particularly the administrator identity), behavior hijacking, Trojan insertion and worm spreading, and also phishing
- A . True
- B . False