Bird
0
0

For a microservices platform with thousands of services, which service-to-service authentication strategy best balances security and scalability?

hard📝 Trade-off Q8 of 15
Microservices - Authentication and Authorization
For a microservices platform with thousands of services, which service-to-service authentication strategy best balances security and scalability?
AUse a centralized OAuth 2.0 authorization server issuing short-lived JWT tokens
BImplement mutual TLS (mTLS) with unique certificates for each service
CUse API keys hardcoded in each service for authentication
DAllow services to trust tokens without signature verification to reduce latency
Step-by-Step Solution
Solution:

  1. Step 1: Evaluate scalability

    Centralized OAuth 2.0 with JWT tokens scales well due to stateless tokens.

  2. Step 2: Evaluate security

    Short-lived JWT tokens reduce risk; OAuth 2.0 is industry standard.

  3. Step 3: Compare alternatives

    mTLS is secure but complex at scale; API keys are less secure; skipping verification is unsafe.

  4. Final Answer:

    Use a centralized OAuth 2.0 authorization server issuing short-lived JWT tokens -> Option A

  5. Quick Check:

    Stateless tokens improve scalability and security [OK]
Quick Trick: Centralized OAuth with JWT tokens balances scale and security [OK]
Common Mistakes:
MISTAKES
  • Choosing mTLS without considering operational complexity
  • Using static API keys risking compromise
  • Skipping token verification to improve performance

Want More Practice?

15+ quiz questions · All difficulty levels · Free

Free Signup - Practice All Questions
More Microservices Quizzes
Authentication and Authorization - OAuth 2.0 for microservices - Quiz 13medium Event-Driven Architecture - Event store concept - Quiz 4medium Monitoring and Observability - Why observability is critical in distributed systems - Quiz 1easy Monitoring and Observability - Correlation IDs - Quiz 13medium Orchestration with Kubernetes - Kubernetes basics review - Quiz 11easy Orchestration with Kubernetes - Horizontal Pod Autoscaler - Quiz 8hard Orchestration with Kubernetes - ConfigMaps and Secrets - Quiz 7medium Resilience Patterns - Timeout pattern - Quiz 9hard Resilience Patterns - Fallback pattern - Quiz 14medium Service Mesh - Why service mesh manages inter-service traffic - Quiz 1easy