A team is setting up multiple containers that launch frequently, and they wish to keep tokens concealed. Which method best helps protect these tokens in this dynamic environment?
Store them in environment variables encoded with base64
Refine firewall policies to prevent external scanning
Bundle them in the container’s application code
Employ a specialized vault service that delivers them at startup
A dedicated vault that provides short-lived tokens at startup is a strong choice for ensuring sensitive items are not stored in code or environment variables. This option integrates with container orchestration tools, limiting exposure by provisioning tokens on demand. Keeping data encoded with base64 does not adequately hide it. Embedding tokens in the container’s code renders them vulnerable. Modifying firewall rules does not inherently protect data within the container.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What is a vault service in the context of secure token management?
Open an interactive chat with Bash
Why is base64 encoding not a secure method for hiding tokens?
Open an interactive chat with Bash
How do container orchestration tools integrate with vault services?
Open an interactive chat with Bash
CompTIA Cloud+ CV0-004
Security
Your Score:
Report Issue
Bash, the Crucial Exams Chat Bot
AI Bot
Loading...
Loading...
Loading...
IT & Cybersecurity Package Join Premium for Full Access