Quiz
Answer the following questions to test your knowledge of this chapter:
- Kubernetes secrets provide a native solution to secret management, so why would organizations still seek to use HashiCorp Vault or any such third-party tools?
- How would you automate or scale the process of running image security scans as we learned how to do in the previous chapter and follow up with application security?
- Besides secrets, what other type of data would you, as a security engineer, be interested in preserving, and what steps could you take to do so?
- What are some of the security trade-offs to be mindful of when it comes to building an authentication and authorization service?
- How would you create a redundancy solution for secrets management using your Vault Pod?