Free Preparation Discussions
MENU
CompTIA Exam CAS-004 Topic 10 Question 39 Discussion
Topic #: 10
A cloud security architect has been tasked with finding a solution for hardening VMS. The solution must meet the following requirements:
* Data needs to be stored outside of the VMS.
* No unauthorized modifications to the VMS are allowed
* If a change needs to be done, a new VM needs to be deployed.
Which of the following is the BEST solution?
An immutable system is a system that does not change after it is deployed. Any changes or updates are done by creating a new system from a common image or template and replacing the old one. An immutable system meets the requirements of storing data outside of the VMs, preventing unauthorized modifications to the VMs, and deploying a new VM if a change needs to be done. An immutable system can improve the security, reliability, and consistency of the VMs by avoiding configuration drift, human errors, or malicious tampering. An immutable system can also simplify the deployment process and enable faster recovery from failures. Verified Reference:
https://cloudinfrastructureservices.co.uk/vm-types-for-devops-pets-vs-cattle-vs-immutable/
https://www.digitalocean.com/community/tutorials/what-is-immutable-infrastructure
Currently there are no comments in this discussion, be the first to comment!