Google Professional Cloud DevOps Engineer

Ultimate access to all questions.

Explanation:

The two practices that are not recommended for managing secrets are:

Cache Secrets locally many times a day: This practice increases the risk of exposure if the local machine is compromised. Secrets should be retrieved from a secure secret management solution as needed, rather than being cached locally.
Cache Secrets locally once a year: While caching secrets locally for a short period might be acceptable in certain scenarios, doing so for an entire year is not advisable. Secrets should be rotated regularly to minimize the risk of exposure.

Best practices include:

Using a separate solution or platform: This isolates secrets from other sensitive data, reducing the risk of exposure.
Rotating Secrets: Regularly changing secrets is crucial to prevent unauthorized access.

Explanation:

The two practices that are not recommended for managing secrets are:

Cache Secrets locally many times a day: This practice increases the risk of exposure if the local machine is compromised. Secrets should be retrieved from a secure secret management solution as needed, rather than being cached locally.
Cache Secrets locally once a year: While caching secrets locally for a short period might be acceptable in certain scenarios, doing so for an entire year is not advisable. Secrets should be rotated regularly to minimize the risk of exposure.

Best practices include:

Using a separate solution or platform: This isolates secrets from other sensitive data, reducing the risk of exposure.
Rotating Secrets: Regularly changing secrets is crucial to prevent unauthorized access.

Comments (0)

No comments yet.

Real Exam

Cache Secrets locally once a year.

50.0%

Use a separate solution or platform.

11.1%

Rotating Secrets is a must.

Cache Secrets locally many times a day.

38.9%