CSA Exam CCZT Topic 4 Question 19 Discussion

Actual exam question for CSA's CCZT exam

Question #: 19
Topic #: 4

[All CCZT Questions]

In a ZTA, where should policies be created?

AData plane

BNetwork

CControl plane

DEndpoint
In a ZTA, policies should be created in the control plane, which is the logical component that defines and manages the policies for accessing resources.The control plane consists of policy entities, such as policy administrators, policy engines, and policy decision points, that are responsible for crafting, maintaining, evaluating, and enforcing the policies1.The control plane interacts with the data plane, which is the logical component that handles the data transmission and processing, and the network, which is the physical or virtual component that provides the connectivity and transport for the data plane1.The endpoint is the device or system that requests or provides access to a resource1.
Reference=
Zero Trust Architecture | NIST

Show Suggested Answer

Suggested Answer: B

After successful authentication and authorization, the client typically sends an SPA packet to the controller, which acts as an intermediary in authenticating the client's request before access to the accepting host is granted. Reference = Certificate of Competence in Zero Trust (CCZT) - Cloud Security Alliance, Zero Trust Training (ZTT) - Module 9: Risk Management

by Inocencia at Jul 04, 2024, 02:38 PM

Limited Time Offer

25%

Off

Get Premium CCZT Questions as Interactive Web-Based Practice Test or PDF