A software development team is deploying a new payment module within a microservices architecture. The lead security engineer notes a barrier between the payment module processing sensitive financial details and the rest of the environment. Which measure most effectively prevents unauthorized users from crossing that barrier and affecting transactions?
Use a shared database for synchronized, universal data handling across development and production
Enforce distinct network zones and restrict communication between them with strict filtering
Permit direct calls among all services to simplify inter-module transactions
Adopt unified authentication so services share a single token for better integration
Establishing network segmentation with specialized filters secures the sensitive component from less-trusted services and blocks unauthorized movement. Sharing databases or networks across testing environments and production opens a potential passage for intruders. While unified authentication centralizes sign-on, it does not by itself sufficiently enforce granular partitions between modules. Allowing direct requests among services overrides the separation and broadens exposure.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What is network segmentation in the context of microservices?
Open an interactive chat with Bash
How does strict filtering work to secure communication between network zones?
Open an interactive chat with Bash
Why is unified authentication insufficient for securing microservices communication?