0
0
Microservicessystem_design~5 mins

Secrets management (Vault, AWS Secrets Manager) in Microservices - Cheat Sheet & Quick Revision

Choose your learning style9 modes available
LearnWhyDeepArchPracticeChallengeDesignRecallScale
Recall & Review
beginner
What is the main purpose of secrets management in cloud applications?
Secrets management securely stores and controls access to sensitive information like passwords, API keys, and certificates to prevent unauthorized access.
Click to reveal answer
intermediate
How does HashiCorp Vault help in managing secrets?
Vault centralizes secret storage, encrypts secrets, controls access with policies, and can dynamically generate secrets to reduce risk.
Click to reveal answer
intermediate
What is a key feature of AWS Secrets Manager?
AWS Secrets Manager automatically rotates secrets, securely stores them, and integrates with AWS services for easy access and management.
Click to reveal answer
beginner
Why should secrets never be hardcoded in application code?
Hardcoding secrets risks exposure if code is shared or leaked, making it easier for attackers to access sensitive data.
Click to reveal answer
advanced
What is dynamic secret generation and why is it useful?
Dynamic secret generation creates secrets on demand with limited lifetime, reducing the chance of long-term secret exposure.
Click to reveal answer
Which of the following is NOT a benefit of using a secrets manager?
ACentralized secret storage
BAccess control policies
CAutomatic secret rotation
DHardcoding secrets in source code
What does AWS Secrets Manager do to help keep secrets secure?
AShares secrets publicly
BEncrypts secrets and rotates them automatically
CRequires manual secret updates only
DStores secrets in plain text
In Vault, what controls who can access which secrets?
AAccess control policies
BUser passwords stored in code
COpen public access
DNo controls needed
Why is dynamic secret generation safer than static secrets?
ASecrets are stored in plain text
BSecrets never change
CSecrets expire after a short time reducing risk
DSecrets are shared with everyone
Which service is best suited for managing secrets in AWS cloud?
AAWS Secrets Manager
BAWS S3
CAWS EC2
DAWS Lambda
Explain how Vault manages secrets securely in a microservices environment.
Think about how Vault controls who can see secrets and how it limits secret lifetime.
You got /5 concepts.
    Describe the benefits of using AWS Secrets Manager over hardcoding secrets in your application.
    Focus on automation, security, and ease of use.
    You got /5 concepts.