Arcitura Education S90.19 Exam - Topic 5 Question 10 Discussion

Actual exam question for Arcitura Education's S90.19 exam

Question #: 10
Topic #: 5

Architects responsible for a domain service inventory are being asked to make some of their services available to service consumers from outside the organization. However, they are reluctant to do so and consult you to help define a security architecture that will keep all of the existing services within the domain service inventory hidden within a private network. Which of the following is a valid approach for fulfilling this requirement?

AApply the Brokered Authentication pattern to position an authentication broker outside the private network that has been configured to access the internal services via a firewall. The authentication broker becomes the sole contact point for external service consumers.

BApply the Service Perimeter Guard pattern in order to position a perimeter service outside the private network that has been configured to access the internal services via a firewall. The perimeter service becomes the sole contact point for external service consumers.

CApply the Trusted Subsystem pattern in order to position a service outside the private network that authenticates each incoming request and then uses its own set of credentials to get access to internal services. This service becomes the sole contact point for external service consumers.

DNone of the above.

Show Suggested Answer

Suggested Answer: B

by Chaya at May 07, 2022, 07:34 AM

Limited Time Offer

25%

Off

Get Premium S90.19 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel

Rana

4 months ago

All options have their pros and cons, but I lean towards B.

upvoted 0 times

...

Bronwyn

4 months ago

C could work, but it adds complexity.

upvoted 0 times

...

Whitney

4 months ago

Surprised that none of these options mention encryption!

upvoted 0 times

...

Tayna

4 months ago

I disagree, A seems more secure with the brokered approach.

upvoted 0 times

...

Helga

5 months ago

I think option B is the best choice here.

upvoted 0 times

...

Madelyn

5 months ago

I'm pretty confident about this one. I think the answer is B - EDA picklist values for reciprocal Relationships need to be translated manually.

upvoted 0 times

...

Novella

5 months ago

I think I'm going to go with option B. It seems the most straightforward and flexible approach. Writing a Python script to use the BigQuery API directly should be pretty straightforward, and then I can easily integrate that into my Kubeflow pipeline.

upvoted 0 times

...

Evangelina

5 months ago

Hmm, I'm a bit unsure about this one. I know there are different charts used to track risks, but I can't quite remember the differences between them. I'll have to think this through carefully.

upvoted 0 times

...

Penney

5 months ago

Ah, this is a good one. I remember the differences between Element and Attr nodes in the DOM. I believe the Node interface can be used to change the value (nodeValue) of the Attr node, so I'll go with option C.

upvoted 0 times

...

Aleisha

5 months ago

Ah, I see. Decreasing the maximum number of trials during subsequent training phases could be a good way to balance speed and effectiveness. I'll make sure to select the two best options.

upvoted 0 times

...

Zena

5 months ago

Airjack is definitely a tool for wireless attacks, so that's a strong contender. I'll make sure to read the question carefully before selecting my answer.

upvoted 0 times

...

Herman

5 months ago

Okay, I've got this. Enterprise strategic planning is the overarching framework, then IT and cybersecurity planning flow from that. The order is key, so I'll be sure to double-check my answer.

upvoted 0 times

...