CAS-001 · Question #401
CAS-001 Question #401: Real Exam Question with Answer & Explanation
The correct answer is A: Secure storage and transmission of API keys. Secure storage and transmission of API keys (A) is critical because API keys authenticate customers to the platform; a compromised key could allow one customer to query or retrieve another customer's logs. Secure protocols for transmission (B) ensure that log files and search res
Question
Options
- ASecure storage and transmission of API keys
- BSecure protocols for transmission of log files and search results
- CAt least two years retention of log files in case of e-discovery requests
- DMulti-tenancy with RBAC support
- ESanitizing filters to prevent upload of sensitive log file contents
- FEncrypted storage of all customer log files
Explanation
Secure storage and transmission of API keys (A) is critical because API keys authenticate customers to the platform; a compromised key could allow one customer to query or retrieve another customer's logs. Secure protocols for transmission (B) ensure that log files and search results in transit cannot be intercepted and read by unauthorized parties, including other customers. Multi-tenancy with RBAC support (D) is the primary architectural control that logically isolates each customer's data-RBAC ensures that a query or API call made under Customer A's credentials cannot access Customer B's data. Log retention (C) addresses legal/e-discovery needs, not cross-customer disclosure. Sanitizing upload filters (E) protects against sensitive data being stored but does not prevent cross-customer access. Encrypted storage (F) protects data at rest from external attackers but does not prevent a legitimate (but unauthorized) customer session from accessing another tenant's data-that is a logical access control problem solved by multi-tenancy and RBAC.
Community Discussion
No community discussion yet for this question.