Cisco Exam 300-735 Topic 2 Question 55 Discussion

Actual exam question for Cisco's 300-735 exam

Question #: 55
Topic #: 2

A developer has just completed the configuration of an API that connects sensitive internal systems. Based on company policies, the security of the data is a high priority.

Which approach must be taken to secure API keys and passwords?

AEmbed them directly in the code.

BStore them in a hidden file.

CStore them inside the source tree of the application.

DChange them periodically.

Show Suggested Answer

Suggested Answer: D

by Mozell at Mar 10, 2024, 09:24 AM

Limited Time Offer

25%

Off

Get Premium 300-735 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel

Barrett

3 days ago

Storing them in a hidden file or inside the source tree isn't much better. Those are just security through obscurity, which we all know is not real security.

upvoted 0 times

...

Dulce

4 days ago

Haha, yeah, might as well just post the credentials on a billboard for everyone to see. I'd be surprised if anyone even considers that one.

upvoted 0 times

...

Diego

5 days ago

I agree, option A is just asking to get hacked. That's like putting a 'Steal Me' sign on your front door.

upvoted 0 times

...

Dorthy

6 days ago

Seriously? Embedding sensitive information like API keys and passwords directly in the code? That's a huge security risk! I can't believe that's even an option on the exam.

upvoted 0 times

...