Winter Special Limited Time 65% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: bigdisc65

ACA-Sec1 Exam Dumps - Alibaba Cloud Alibaba Security Questions and Answers

Question # 14

Which of the following service may under anti-DDOS attack?(the number of correct answers:

3)

Score 1

Options:

A.

servers in VPC only configured with private network

B.

any device internet reachable

C.

government website

D.

public DNS service

E.

offline servers

Buy Now
Question # 15

The Alibaba Cloud WAF protection strategy provides the following: (the number of correct

answers: 3)

Score 1

Options:

A.

Loose

B.

Strict

C.

Normal

D.

Regular

E.

Early Warning

Buy Now
Question # 16

Which of the following function is NOT provided by 'Server Guard' vulnerability detection?

Options:

A.

Trojan detection

B.

weak password detection

C.

sensitive data encryption

D.

Linux system vulnerability scanning

Buy Now
Question # 17

Which of the following statements about cloud security shared responsibilities model are true? (the

number of correct answers: 2)

Options:

A.

for users who is using IAAS service, they should be responsible for their business system which is

on top of cloud infrastructure

B.

cloud service provider should guarantee the security of all physical infrastructure

C.

the damage caused by attacks leveraging security vulnerability in customers' application server

should be charged to cloud service provider

D.

cloud user should also take care of some of the hardware maintenance and operation work

Buy Now
Question # 18

Which of the following products won't be a DDOS attack target?

Options:

A.

offline backup tape devices

B.

enterprise major website

C.

router device

D.

online banking system

Buy Now
Question # 19

Which of the following function is provided by 'server guard' patch management service?

Options:

A.

fix vulnerability found in open source software using Alibaba self-developed patch

B.

detect any vulnerability before it bursts

C.

release official patches for any exposed vulnerability

D.

stop hacker's vulnerabilities probing

Buy Now
Question # 20

Identify the attack where the purpose is to stop a workstation or service from functioning?

Options:

A.

This attack is known as non-repudiation

B.

This attack is known as TCP/IP hijacking

C.

This attack is known as denial of service (DoS)

D.

This attack is known as brute force

Buy Now
Question # 21

Alibaba Cloud offers different security protection plans to different tenant accounts. Which of the

following is NOT a security plan offered by Alibaba Cloud?

Options:

A.

Password-free login

B.

Two-factor authentication

C.

Phone number binding

D.

Phone or email verification for password resetting

Buy Now
Question # 22

Which of the following scenarios are suitable to use CC emergency mode protection? (the

number of correct answers: 2)

Options:

A.

Web page

B.

HTML 5 page

C.

API

D.

Native APPs

Buy Now
Question # 23

What design flaw of TCP/IP protocol does SYN flood attack use?

Options:

A.

UDP stateless connectio

B.

DNS 3 times hands shake

C.

TCP 3 times hands shake

D.

HTTP plain text transmission

Buy Now
Exam Code: ACA-Sec1
Exam Name: ACA Cloud Security Associate
Last Update: Feb 5, 2025
Questions: 147
ACA-Sec1 pdf

ACA-Sec1 PDF

$29.75  $84.99
 Add to Cart
ACA-Sec1 Engine

ACA-Sec1 Testing Engine

$33.25  $94.99
 Add to Cart
ACA-Sec1 PDF + Engine

ACA-Sec1 PDF + Testing Engine

$47.25  $134.99
 Add to Cart