Answer-first summary for fast verification
Answer: Enabling SSL/TLS for all Spark communication channels and inter-node encryption.
Enabling SSL/TLS for all Spark communication channels and inter-node encryption is the most suitable approach for ensuring end-to-end encryption for data-in-transit in a Spark application while providing the highest security without significantly impacting performance. SSL/TLS protocols are widely recognized for securing communication over the internet by encrypting data during transmission. This method ensures data is encrypted before being sent over the network, safeguarding it from eavesdropping or interception. Additionally, inter-node encryption secures data transferred between different nodes within the Spark cluster, offering a comprehensive encryption strategy that protects data at every transmission stage. While IPsec tunnels (option A) are valid, they introduce more complexity and overhead. Using UDFs for encryption (option B) may not provide the same level of security against network-level threats. External encryption services (option D) can add dependencies and potentially degrade performance.
Author: LeetQuiz Editorial Team
Ultimate access to all questions.
What is the most effective setup for ensuring end-to-end encryption for data-in-transit in a Spark application without significantly impacting performance?
A
Utilizing IPsec tunnels for network encryption at the infrastructure level.
B
Applying encryption within Spark using UDFs for encrypting and decrypting data.
C
Enabling SSL/TLS for all Spark communication channels and inter-node encryption.
D
Configuring Spark to use an external encryption service for all data transfers.
No comments yet.