ASSOCIATE-CLOUD-ENGINEER Question #204: Real Exam Question with Answer & Explanation

Question

You are building an application that processes data files uploaded from thousands of suppliers. Your primary goals for the application are data security and the expiration of aged data. You need to design the application to: - Restrict access so that suppliers can access only their own data. - Give suppliers write access to data only for 30 minutes. - Delete data that is over 45 days old. You have a very short development cycle, and you need to make sure that the application requires minimal maintenance. Which two strategies should you use? (Choose two.)

Options

• ABuild a lifecycle policy to delete Cloud Storage objects after 45 days.
• BUse signed URLs to allow suppliers limited time access to store their objects.
• CSet up an SFTP server for your application, and create a separate user for each supplier.
• DBuild a Cloud function that triggers a timer of 45 days to delete objects that have expired.
• EDevelop a script that loops through all Cloud Storage buckets and deletes any buckets that are

Explanation

(A) Object Lifecycle Management The Delete action deletes an object when the object meets all conditions specified in the lifecycle Exception: In buckets with Object Versioning enabled, deleting the live version of an object causes it to become a noncurrent version, while deleting a noncurrent version deletes that version permanently. https://cloud.google.com/storage/docs/lifecycle#delete This page provides an overview of signed URLs, which you use to give time-limited resource access to anyone in possession of the URL, regardless of whether they have a Google account https://cloud.google.com/storage/docs/access-control/signed-urls

No community discussion yet for this question.