PROFESSIONAL-CLOUD-SECURITY-ENGINEER · Question #275
PROFESSIONAL-CLOUD-SECURITY-ENGINEER Question #275: Real Exam Question with Answer & Explanation
Sign in or unlock PROFESSIONAL-CLOUD-SECURITY-ENGINEER to reveal the answer and full explanation for question #275. The question stem and answer options stay visible for context.
Question
Your organization's financial modeling application is already deployed on Google Cloud. The application processes large amounts of sensitive customer financial data. Application code is old and poorly understood by your current software engineers. Recent threat modeling exercises have highlighted the potential risk of sophisticated side-channel attacks against the application while the application is running. You need to further harden the Google Cloud solution to mitigate the risk of these side-channel attacks, ensuring maximum protection for the confidentiality of financial data during processing, while minimizing application problems. What should you do?
Options
- AEnforce stricter access controls for Compute Engine instances by using service accounts, least
- BImplement a runtime library designed to introduce noise and timing variations into the
- CMigrate the application to Confidential VMs to provide hardware-level encryption of memory and
- DUtilize customer-managed encryption keys (CMEK) to ensure complete control over the
Unlock PROFESSIONAL-CLOUD-SECURITY-ENGINEER to see the answer
You've previewed enough free PROFESSIONAL-CLOUD-SECURITY-ENGINEER questions. Unlock PROFESSIONAL-CLOUD-SECURITY-ENGINEER for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.