A developer is creating a new service that requires programmatic connections to a remote resource in a shared environment. Which measure best supports proper verification of those connections?
Store credentials in environment variables to support automated workflows
Obtain short-term credentials from a validation service that regularly issues new tokens
Use a common repository for access keys overseen by an external entity
Save tokens in configuration files with controlled access on each server
Short-term credentials from a validation service reduce the risk of long-term misuse by limiting the timeframe in which they can be exploited. This approach helps ensure that compromised credentials are less useful. Storing credentials in environment variables or configuration files can risk prolonged exposure or unintentional sharing. Using a common repository that is managed externally might lead to weaker governance and slow rotation.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What is a validation service in the context of issuing short-term credentials?
Open an interactive chat with Bash
How do short-term credentials improve security compared to long-term credentials?
Open an interactive chat with Bash
What are common risks of storing credentials in environment variables or configuration files?