Bird
0
0

In a microservices environment, what is the best practice to ensure that each service maintains its own security integrity?

easy📝 Conceptual Q3 of 15
Microservices - Authentication and Authorization
In a microservices environment, what is the best practice to ensure that each service maintains its own security integrity?
AImplement authentication and authorization checks within each microservice independently
BRely solely on a centralized API gateway to handle all security validations
CUse network firewalls to block unauthorized access between services without internal checks
DTrust all internal service calls without additional security since they are within the same network
Step-by-Step Solution
Solution:

  1. Step 1: Understand microservice boundaries

    Each microservice is an independent unit that can be accessed separately, so security must be enforced locally.

  2. Step 2: Identify security enforcement points

    Relying only on a gateway or network controls leaves internal calls vulnerable to attacks or misconfigurations.

  3. Step 3: Implement local checks

    Authentication and authorization within each service ensure that only valid and authorized requests are processed.

  4. Final Answer:

    Implement authentication and authorization checks within each microservice independently -> Option A

  5. Quick Check:

    Security must be enforced at each service boundary [OK]
Quick Trick: Each microservice must validate requests independently [OK]
Common Mistakes:
MISTAKES
  • Assuming a gateway alone can secure all services
  • Trusting internal network calls without validation
  • Relying only on network firewalls for service security

Want More Practice?

15+ quiz questions · All difficulty levels · Free

Free Signup - Practice All Questions
More Microservices Quizzes
Authentication and Authorization - OAuth 2.0 for microservices - Quiz 14medium Event-Driven Architecture - Event-driven vs request-driven - Quiz 11easy Event-Driven Architecture - Event replay - Quiz 2easy Monitoring and Observability - Why observability is critical in distributed systems - Quiz 4medium Monitoring and Observability - Three pillars (metrics, logs, traces) - Quiz 12easy Monitoring and Observability - Metrics collection (Prometheus) - Quiz 14medium Orchestration with Kubernetes - Horizontal Pod Autoscaler - Quiz 3easy Resilience Patterns - Fallback pattern - Quiz 8hard Resilience Patterns - Retry with exponential backoff - Quiz 11easy Service Mesh - Istio overview - Quiz 15hard