Linux Foundation KCSA Exam Practice Test Instant Access

Question 1

Which label should be added to the Namespace to block any privileged Pods from being created in that Namespace?

Aprivileged: false

Bprivileged: true

Cpod-security.kubernetes.io/enforce: baseline

Dpod.security.kubernetes.io/privileged: false

Answer : C

Question 2

How can a user enforce the Pod Security Standard without third-party tools?

AThrough implementing Kyverno or OPA Policies.

BUse the PodSecurity admission controller.

CIt is only possible to enforce the Pod Security Standard with additional tools within the cloud native ecosystem.

DNo additional measures have to be taken to enforce the Pod Security Standard.

Answer : B

Question 3

When should soft multitenancy be used over hard multitenancy?

AWhen the priority is enabling resource sharing and efficiency between tenants.

BWhen the priority is enabling complete isolation between tenants.

CWhen the priority is enabling fine-grained control over tenant resources.

DWhen the priority is enabling strict security boundaries between tenants.

Answer : A

Question 4

In a Kubernetes cluster, what are the security risks associated with using ConfigMaps for storing secrets?

AStoring secrets in ConfigMaps does not allow for fine-grained access control via RBAC.

BStoring secrets in ConfigMaps can expose sensitive information as they are stored in plaintext and can be accessed by unauthorized users.

CUsing ConfigMaps for storing secrets might make applications incompatible with the Kubernetes cluster.

DConfigMaps store sensitive information in etcd encoded in base64 format automatically, which does not ensure confidentiality of data.

Answer : B, D

Question 5

What is the purpose of the Supplier Assessments and Reviews control in the NIST 800-53 Rev. 5 set of controls for Supply Chain Risk Management?

ATo evaluate and monitor existing suppliers for adherence to security requirements.

BTo conduct regular audits of suppliers' financial performance.

CTo establish contractual agreements with suppliers.

DTo identify potential suppliers for the organization.

Answer : A

Question 6

Which of the following is a control for Supply Chain Risk Management according to NIST 800-53 Rev. 5?

AAccess Control

BSystem and Communications Protection

CSupply Chain Risk Management Plan

DIncident Response

Answer : C

Question 7

In Kubernetes, what is Public Key Infrastructure used for?

ATo manage certificates and ensure secure communication in a Kubernetes cluster.

BTo automate the scaling of containers in a Kubernetes cluster.

CTo manage networking in a Kubernetes cluster.

DTo monitor and analyze performance metrics of a Kubernetes cluster.

Answer : A

Linux Foundation Kubernetes and Cloud Native Security Associate KCSA Exam Practice Test