A security analyst needs to provide the development team with secure connectivity from the corporate network to a three-tier cloud environment. The developers require access to servers in all three tiers in order to perform various configuration tasks. Which of the following technologies should the analyst implement to provide secure transport?
Correct Answer: D
A VPN (Virtual Private Network) creates a secure and encrypted tunnel between the corporate network and the cloud environment. This allows the development team to access servers in all three tiers of the cloud environment securely, without exposing their traffic to the public internet.
The other options are not as well-suited for this scenario:
CASB (Cloud Access Security Broker) is a security solution that monitors and controls traffic between the corporate network and cloud environments. CASBs can be used to enforce security policies, such as preventing users from accessing unauthorized cloud resources. However, CASBs do not provide secure transport.
VPC (Virtual Private Cloud) is a network service that creates a logically isolated section of a cloud environment. VPCs can be used to improve security and performance by isolating traffic from different workloads. However, VPCs do not provide secure transport between the corporate network and the cloud environment.
Federation is a technology that allows users to log in to multiple applications using a single set of credentials. Federation can be used to improve security and convenience for users. However, federation does not provide secure transport.
In conclusion, a VPN is the best technology to use to provide secure transport for the development team to access the cloud environment.