ExamTopics Logo
Mail Us[email protected]
Menu
Cisco Discussions
exam questions

Exam 200-901 All Questions

View all questions & answers for the 200-901 exam
Go to Exam

Exam 200-901 topic 1 question 222 discussion

Actual exam question from Cisco's 200-901
Question #: 222
Topic #: 1
[All 200-901 Questions]


Refer to the exhibit. An engineer must check the admin rights of users on a database regularly and prepares the Python script to automate the process. The script connects to the database and runs a query. What is a security issue about the secrets in the code that relates to secret protection?

  • A. They must be stored in configuration files if there is a possibility of leakage.
  • B. They must be Base64-encoded if stored in the user database.
  • C. They must be encrypted if stored in the user database.
  • D. They must be stored in configuration files if no authentication will be used.
Show Suggested Answer Hide Answer
Suggested Answer: C 🗳️
by karren19 at June 17, 2022, 1:36 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
Medusa8
Highly Voted 1 year ago
Selected Answer: C
I am convinced that it's C
upvoted 7 times
...
ghrrman54
Most Recent 1 year ago
According to DevAsc guide secrets must be encrypted if they are stored in the user database. So it should be C. Other options don't make any sense except maybe Base64 but this encoding is not mentioned in this part of the guide so again C. >>>>>>>>>>>>>>>>> Data at rest (storage) Any data that is stored can be accessed digitally or physically. Encrypting data at rest protects it against physical theft of the file system storage devices, protects against unauthorized access to data, and satisfies information security or regulatory requirements. Full disk encryption File system encryption Database encryption >>>>>>>>>>>>>>>>> Also look at this: https://spectralops.io/blog/where-your-code-secrets-hide-filetypes/ PD. this qu sucks.
upvoted 3 times
ghrrman54
1 year ago
Aaand... encoding is not the same as encrypting The main aim of encoding is to transform the data so that it can be properly used by a different type of system. It is not used to protect the data as it is easy to reverse in comparison to encryption. so again C
upvoted 4 times
...
...
karren19
1 year, 1 month ago
Could somebody explain why D is right?
upvoted 2 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel