nerdexam
ExamsCV0-003Questions#640
CompTIA

CV0-003 · Question #640

CV0-003 Question #640: Real Exam Question with Answer & Explanation

The correct answer is D: Store the credentials using the orchestrator secret manager. Using the orchestrator's secret manager (e.g., Kubernetes Secrets, Docker Swarm Secrets) is the most secure way to store sensitive information such as credentials for a containerized application. This method ensures that secrets are stored securely, encrypted at rest, and can be

Security

Question

A production engineer is configuring a new application, which is running in containers, that requires access to a database. Which of the following methods will allow the application to authenticate to the database in the MOST secure way?

Options

  • AStore the credentials in a variable on every worker node
  • BStore the credentials on a shared volume using whole-disk encryption
  • CStore the credentials in a configuration file using SHA-256 inside the container image
  • DStore the credentials using the orchestrator secret manager

Explanation

Using the orchestrator's secret manager (e.g., Kubernetes Secrets, Docker Swarm Secrets) is the most secure way to store sensitive information such as credentials for a containerized application. This method ensures that secrets are stored securely, encrypted at rest, and can be accessed only by authorized containers. Additionally, it simplifies the management of credentials, as they are centrally managed and can be updated without modifying the container image or the application code.

Topics

#secrets management#container security#credential storage#orchestration

Community Discussion

No community discussion yet for this question.

Sign up to join the discussion
Full CV0-003 Practice