Google Professional Cloud Architect
Get started today
Ultimate access to all questions.
Ultimate access to all questions.
You are designing a large distributed application with 30 microservices, each responsible for different parts of your system. Each microservice needs to securely connect to its own database back-end, requiring individual database credentials. Considering security best practices, where should you store these credentials to ensure they are kept secure and managed efficiently?
Explanation:
The correct answer is C. Storing credentials in a secret management system is the best practice for ensuring their security and proper management. Secret management systems are designed to securely generate, use, rotate, encrypt, and destroy cryptographic keys. This ensures that sensitive information like database credentials is protected against unauthorized access. Other options, such as storing credentials in the source code, environment variables, or config files, expose the credentials to higher risks of being compromised, either by accidental exposure or by insufficient access controls.