Answer-first summary for fast verification
Answer: In a secret management system
The correct answer is **C** because it is a recommended practice to store credentials in a secret management system such as KMS. Secrets are sensitive data that applications may need at build or run time, similar to configuration files but more sensitive as they may grant access to additional data like user data. Embedding secrets in source code (Option D), using environment variables (Option B), or storing them in config files with restricted access (Option A) are not recommended practices for securing sensitive credentials. Best practices include not embedding secrets in source code, using different credentials for different environments, transferring credentials only over HTTPS, never embedding long-lived credentials in client-side apps, and revoking tokens when they are no longer needed.
Author: LeetQuiz Editorial Team
Ultimate access to all questions.
When designing a large distributed application with 30 microservices, each requiring a connection to a database backend, where is the most secure place to store the credentials?
A
In a config file that has restricted access through ACLs
B
In an environment variable
C
In a secret management system
D
In the source code
No comments yet.