You are developing an application with multiple microservices deployed in a Google Kubernetes Engine (GKE) cluster. One microservice requires a connection to an on-premises third-party database. How should you securely store and manage the database credentials while enabling credential rotation in alignment with security best practices?

Exam-Like

Store the credentials in a sidecar container proxy, and use it to connect to the third-party database.

0.0%

Configure a service mesh to allow or restrict traffic from the Pods in your microservice to the database.

4.0%

Store the credentials in an encrypted volume mount, and associate a Persistent Volume Claim with the client Pod.

8.0%

Store the credentials as a Kubernetes Secret, and use the Cloud Key Management Service plugin to handle encryption and decryption.

88.0%

Google Professional Cloud Developer