A global financial institution is re-architecting their application infrastructure to improve security between internal system components. They require a solution that provides identity-based authentication between application components, enforces granular access policies, and integrates with their container orchestration platform. Which of the following would be the BEST solution?
Container orchestration RBAC
API gateway with OAuth 2.0
VLAN segmentation with ACLs
Service-to-service security with mesh architecture
The best solution is an architecture that implements secure service-to-service communication with mutual TLS authentication. This approach provides infrastructure to manage communication security between application components with built-in authentication and authorization capabilities. It verifies service identity and enforces fine-grained access policies for inter-component communications. API gateways primarily focus on external-to-internal traffic rather than internal component communications. While container orchestration platform RBAC manages permissions within the orchestration platform itself, it doesn't address the communication security between deployed applications. Traditional network segmentation with ACLs represents a perimeter-based approach that cannot provide the identity-based, application-level security required for modern architectures.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What is service-to-service security in a mesh architecture?
Open an interactive chat with Bash
How does mutual TLS (mTLS) work in securing service-to-service communication?
Open an interactive chat with Bash
Why are VLAN segmentation and ACLs insufficient for modern application security?
Open an interactive chat with Bash
ISC2 CISSP
Identity and Access Management (IAM)
Your Score:
Report Issue
Bash, the Crucial Exams Chat Bot
AI Bot
Loading...
Loading...
Loading...
Pass with Confidence.
IT & Cybersecurity Package
You have hit the limits of our free tier, become a Premium Member today for unlimited access.
Military, Healthcare worker, Gov. employee or Teacher? See if you qualify for a Community Discount.
Monthly
$19.99
$19.99/mo
Billed monthly, Cancel any time.
3 Month Pass
$44.99
$14.99/mo
One time purchase of $44.99, Does not auto-renew.
MOST POPULAR
Annual Pass
$119.99
$9.99/mo
One time purchase of $119.99, Does not auto-renew.
BEST DEAL
Lifetime Pass
$189.99
One time purchase, Good for life.
What You Get
All IT & Cybersecurity Package plans include the following perks and exams .