How can web security as a service be deployed for a cloud consumer?
How can web security as a service be deployed for a cloud consumer?
Web security as a service (WaaS) can be deployed for a cloud consumer in multiple ways. One common method is by proxying or redirecting web traffic to the cloud provider, where the provider's security mechanisms are applied. Another approach is to deploy web security solutions on-premises through the installation of software or appliances, allowing for local inspection and filtering of web traffic. Therefore, both methods are valid and can be used either independently or in combination, making the most comprehensive option the correct one.
Both A and C, 13.1.2.3
Questions asks about Web Sec as a Service, the answer should only be A
That's true. The question of WEB need to be taking in consideration
I go for D. From 13.1.2.3: > ...via the Cloud by proxying or redirecting web traffic to the cloud provider (or a hybrid of both)
The correct answer is D. Both A and C. Web security as a service (WaaS) can be deployed for a cloud consumer through a combination of proxying or redirecting web traffic to the cloud provider and deploying it on-premise through a software or appliance installation.
I understand peopel that say C is also correct and soem WaaS vendors can land or manage on-premise equipment but "As a service" is more aligned to cloud so 'C' is a bit weak here (though not strictly false)
Security Guidance page 143: Web Security involves real-time protection, offered either on-premises through software and/or appliance installation, or via the Cloud by proxying or redirecting web traffic to the cloud provider (or a hybrid of both).
D- Explanation :Web Security involves real-time protection, offered either on-premises through software and/or appliance installation, or via the Cloud by proxying or redirecting web traffic to the cloud provider (or a hybrid of both).
Web Security involves real-time protection, offered either on-premises through software and/or appliance installation, or via the Cloud by proxying or redirecting web traffic to the cloud provider (or a hybrid of both
D. Both A and C 1. By proxying or redirecting web traffic to the cloud provider: The cloud consumer can direct their web traffic through a web security service provided by the cloud provider. The provider's security service will then analyze and filter the web traffic, applying security controls such as web application firewalls, anti-malware scanning, content filtering, and other security mechanisms. 2. On-premise through a software or appliance installation: Alternatively, the cloud consumer can deploy web security as a service on their own premises by installing dedicated software or appliances provided by a third-party vendor. This software or appliance acts as a gateway or intermediary between the cloud consumer's network and the internet, intercepting and inspecting web traffic for security threats. By combining these approaches, the cloud consumer can leverage both the cloud provider's web security service and deploy their own on-premise solution to enhance their web security posture.
13.1.2.3 Web Security (Web Security Gateways) Web Security involves real-time protection, offered either on-premises through software and/or appliance installation, or via the Cloud by proxying or redirecting web traffic to the cloud provider (or a hybrid of both).