Which of the following is a security concern when using a PaaS solution?

A product manager is working with an analyst to design a new application that will perform as a data analytics platform and will be accessible via a web browser. The product manager suggests using a PaaS provider to host the application.

Which of the following is a security concern when using a PaaS solution?
A . The use of infrastructure-as-code capabilities leads to an increased attack surface.
B . Patching the underlying application server becomes the responsibility of the client.
C . The application is unable to use encryption at the database level.
D . Insecure application programming interfaces can lead to data compromise.

View Answer

Answer: D

Explanation:

Insecure application programming interfaces (APIs) can lead to data compromise when using a PaaS solution. APIs are interfaces that allow applications to communicate with each other and with the underlying platform. APIs can expose sensitive data or functionality to unauthorized or malicious users if they are not properly designed, implemented, or secured. Insecure APIs can result in data breaches, denial of service, unauthorized access, or code injection.

Reference: https://spot.io/resources/cloud-security/paas-security-threats-solutions-and-best-practices/