SOL-C01 · Question #262
SOL-C01 Question #262: Real Exam Question with Answer & Explanation
The correct answer is B: Utilize environment variables to store the connection parameters and access them from the Python. Environment variables (Option B) are a common and relatively secure way to store sensitive information, as they are not directly visible in the code. Snowflake secrets (Option C) offer managed secrets, which is a dedicated, secure method to store and retrieve credentials. Encrypt
Question
You have a Python script that uses Snowpark to connect to Snowflake. You want to ensure that the connection parameters, such as account identifier, username, password, and database, are securely managed and not hardcoded directly in the script. Which of the following strategies would be most effective and secure for managing these sensitive connection parameters? Choose all that apply:
Options
- AStore the connection parameters in a plain text file in a secure location on the server.
- BUtilize environment variables to store the connection parameters and access them from the Python
- CUse Snowflake's Secret object to store credentials, and use Snowpark to retrieve these secrets for
- DStore the connection parameters in a configuration file encrypted with a strong encryption
- EHardcode the parameters within the Python script, but obfuscate them using Base64 encoding.
Explanation
Environment variables (Option B) are a common and relatively secure way to store sensitive information, as they are not directly visible in the code. Snowflake secrets (Option C) offer managed secrets, which is a dedicated, secure method to store and retrieve credentials. Encrypting the configuration file (Option D) adds an extra layer of security, especially if the decryption key is managed separately. Storing credentials in a plain text file (Option A) is highly insecure. Obfuscation (Option E) is not a form of strong security, as Base64 encoding is easily
Topics
Community Discussion
No community discussion yet for this question.