0
0
GCPcloud~5 mins

Security design principles in GCP - Cheat Sheet & Quick Revision

Choose your learning style9 modes available
LearnWhyDeepVisualTryChallengeProjectRecallTime
Recall & Review
beginner
What does the principle of Least Privilege mean in cloud security?
It means giving users and systems only the minimum access rights they need to do their job, nothing more. This reduces the risk of accidental or intentional misuse.
Click to reveal answer
beginner
Explain the Defense in Depth principle.
Defense in Depth means using multiple layers of security controls so if one layer fails, others still protect the system. Think of it like having a locked door, alarm, and security cameras all working together.
Click to reveal answer
intermediate
Why is Fail Securely important in security design?
Fail Securely means that if a system fails or crashes, it should do so in a way that does not expose sensitive data or open security holes. It avoids making the system less safe during errors.
Click to reveal answer
intermediate
What is the purpose of Separation of Duties in security?
Separation of Duties means dividing responsibilities among different people or systems so no single person or system can cause harm alone. This helps prevent fraud and mistakes.
Click to reveal answer
beginner
Describe the Secure by Default principle.
Secure by Default means systems should come with the safest settings turned on from the start, so users don’t have to configure security manually to be protected.
Click to reveal answer
Which principle means giving users only the access they need?
ADefense in Depth
BLeast Privilege
CFail Securely
DSeparation of Duties
What does Defense in Depth provide?
AOpen access for convenience
BSingle strong password
CMultiple layers of security
DNo security needed
Why is Separation of Duties important?
ATo divide responsibilities and reduce risk
BTo speed up processes by combining roles
CTo allow one person full control
DTo remove all security checks
What should happen when a system fails according to Fail Securely?
AIgnore the failure
BCrash without any protection
CExpose data for troubleshooting
DFail without exposing security risks
Secure by Default means:
ASystems come with safe settings enabled
BSystems have no security settings
CSecurity is optional
DUsers must configure security manually
Explain the principle of Least Privilege and why it is important in cloud security.
Think about giving only what is needed, like a key that opens only one door.
You got /3 concepts.
    Describe how Defense in Depth protects cloud systems.
    Imagine several fences around a house instead of just one.
    You got /3 concepts.