D because binary authorization is deploy time security tool and it will allow only trusted and attested containers into GKE

D 100%

Exam on 2024-04-26

Answer is D: The question states: 'only images which are successfully built..' which means Vulnerability Scanns have been completed...

option D

To ensure that only images successfully built by your trusted CI/CD pipeline are deployed to production on Google Kubernetes Engine (GKE) clusters, you should set up the Kubernetes Engine clusters with Binary Authorization. Therefore, the correct answer is: D. Set up the Kubernetes Engine clusters with Binary Authorization.

B The question approach is about a trusted image generated, Is possible to create an image binary authorized with vulnerabilities?

In another mock test I took this was a select-2 answers, and those were B & D

Who is the one that selects the correct answers?, because it matches 1/9999, looks more like a random.

D. Set up the Kubernetes Engine clusters with Binary Authorization. Binary Authorization is a feature of Google Kubernetes Engine that allows you to ensure that only containers that are verified to be from a trusted source are deployed to your clusters. It works by using a policy that checks the signatures of container images before they are deployed. You can configure Binary Authorization to require that all images are signed by a trusted certificate authority (CA) or that they are signed by a trusted key that you manage. This ensures that only images that have been successfully built by your trusted CI/CD pipeline are deployed to your production clusters.

Ans: D Exam passed and taken on 19/12/2022, 50/50 from this dump without buying the full access and looking for 'devops' word here: https://www.examtopics.com/discussions/google/1/

D is the right answer. The dump is valid, got all questions from here and cleared the exam

i will go with D, as there is no vulnerability analysis , it is vulnerability scan in container analysis service. and the binary authorization use metadata store to secure trusted repository.

D is the answer. https://cloud.google.com/binary-authorization Binary Authorization is a deploy-time security control that ensures only trusted container images are deployed on Google Kubernetes Engine (GKE) or Cloud Run. With Binary Authorization, you can require images to be signed by trusted authorities during the development process and then enforce signature validation when deploying. By enforcing validation, you can gain tighter control over your container environment by ensuring only verified images are integrated into the build-and-release process.

answer is D

Must be D.

answer is D