SY0-701 Question #676: Real Exam Question with Answer & Explanation

Question

An organization wants to deploy software in a container environment to increase security. Which of the following would limit the organization's ability to achieve this goal?

Options

• ARegulatory compliance
• BPatch availability
• CKernel version
• DMonolithic code

Explanation

Monolithic code is the correct answer because containerization's security benefits come largely from isolating discrete application components into separate containers - limiting blast radius, applying least-privilege per service, and controlling inter-service communication. A monolithic application is a single, tightly-coupled codebase that cannot be decomposed into independent units, so it must run as one large container, negating the granular isolation that makes containers more secure than traditional deployment.

Why the distractors are wrong:

• A (Regulatory compliance): Compliance frameworks can actually favor containers due to consistent, auditable environments; they constrain how you containerize, not whether you can.
• B (Patch availability): Patching is an ongoing concern for any deployment model, not a barrier to achieving container security specifically.
• C (Kernel version): Containers share the host kernel, so an old kernel is a risk to manage, but it doesn't prevent you from deploying containers and gaining security benefits from isolation.

Memory tip: Think of containers as compartments on a ship - they only improve safety if your cargo can actually be separated. Monolithic code is one giant unsplittable crate: you can put it in a container, but you lose all the compartmentalization benefits.

No community discussion yet for this question.