Online Access Free KCSA Exam Questions

What is the main reason an organization would use a Cloud Workload Protection Platform (CWPP) solution?

• A.To optimize resource utilization and scalability of containerized workloads.
• B.To automate the deployment and management of containerized workloads.
• C.To protect containerized workloads from known vulnerabilities and malware threats.
• D.To manage networking between containerized workloads in the Kubernetes cluster.

Which of the following represents a baseline security measure for containers?

• A.Implementing access control to restrict container access.
• B.Run containers as the root user.
• C.Configuring a static IP for each container.
• D.Configuring persistent storage for containers.

What was the name of the precursor to Pod Security Standards?

• A.Container Runtime Security
• B.Pod Security Policy
• C.Kubernetes Security Context
• D.Container Security Standards

An attacker has access to the network segment that the cluster is on.
What happens when a compromised Pod attempts to connect to the API server?

• A.The compromised Pod connects to the API server and is granted elevated privileges by default.
• B.The compromised Pod is automatically isolated from the network to prevent any connections to the API server.
• C.The compromised Pod attempts to connect to the API server, but its requests may be blocked due to network policies.
• D.The compromised Pod is allowed to connect to the API server without any restrictions.

An attacker has successfully overwhelmed the Kubernetes API server in a cluster with a single control plane node by flooding it with requests.
How would implementing a high-availability mode with multiple control plane nodes mitigate this attack?

• A.By implementing rate limiting and throttling mechanisms on the API server to restrict the number of requests allowed.
• B.By implementing network segmentation to isolate the API server from the rest of the cluster, preventing the attack from spreading.
• C.By increasing the resources allocated to the API server, allowing it to handle a higher volume of requests.
• D.By distributing the workload across multiple API servers, reducing the load on each server.