A developer creates a web application that receives a username and password and uses them to sync the credentials to oth

Business, Finance, Economics, Accounting, Operations Management, Computer Science, Electrical Engineering, Mechanical Engineering, Civil Engineering, Chemical Engineering, Algebra, Precalculus, Statistics and Probabilty, Advanced Math, Physics, Chemistry, Biology, Nursing, Psychology, Certifications, Tests, Prep, and more.
Post Reply
answerhappygod
Site Admin
Posts: 899604
Joined: Mon Aug 02, 2021 8:13 am

A developer creates a web application that receives a username and password and uses them to sync the credentials to oth

Post by answerhappygod »

A developer creates a web application that receives a username and password and uses them to sync the credentials to other services through HTTPS. API keys to services are part of the configuration files of the application, but the credentials to the database that stores the synchronization logs are obtained through an external vault service. What is the security issue in this scenario?

A. Communication between the application and the services is not encrypted.
B. The database credentials should be stored in the configuration files so that they are secured on the same server.
C. The API keys are stored in the configuration files but should be stored in the vault service.
D. The synchronization logs should be encrypted and not stored in a relational database.
Join a community of subject matter experts. Register for FREE to view solutions, replies, and use search function. Request answer by replying!
Top

This topic has 1 reply

You must be a registered member and logged in to view the replies in this topic.


Register Login
 
Post Reply

Return to “Archived Questions & Answers”