Which IAM security practices are recommended? (Select ALL that apply)

Question

BlackTom AI · Accepted Answer

When evaluating IAM security practices, I consider both recommended and discouraged approaches and how they impact access control and risk.
Option: shared root user access keys
Reasoning: Sharing root access keys is risky because the root account has unrestricted privileges. If keys are shared, there is no traceability or accountability for actions, and a single compromised key could grant widespread access. Best practice is to avoid using root keys altogether and instead rely on individual accounts with strong controls and MFA.

Option: Use multi-factor authentication
Reasoning: MFA adds a second factor beyond a password, significantly reducing the likelihood that an attacker can gain access even if credentials are compromised. It is a widely recommended security measure for IAM to protect sensitive operations and privileged accounts.

Option: store credentials in code repositories
Reasoning: Storing credentials in code repositories exposes secrets to anyone who can access the repository, including collaborators who may not need them and potential attackers. This practice leads to credential leakage and is strongly discouraged. Secrets should be managed with dedicated secret management tools and access controls.

Option: Apply principle of least privilege
Reasoning: The principle of least privilege ensures users and services receive only the minimal permissions necessary to perform their tasks. This reduces the blast radius of any compromised account and aligns with secure-by-default IAM posture. It is a core recommended practice in IAM security.

In summary, the recommended practices among the options are not only to enable MFA but also to enforce least privilege, while avoiding sharing root keys and refraining from embedding credentials in code repositories. Such combinations bolster secure access management and minimize risk exposure.

CSYE6225.17541.202610 Quiz 1- Requires Respondus LockDown Browser

Which IAM security practices are recommended? (Select ALL that apply)

查看解析

登录即可查看完整答案

类似问题

What components ensure secure access and management of user identities within the digital ecosystem?

Which of the following describes a security best practice that can be implemented by using AWS Identity and Access Management (IAM)?

Which of the following are best practices to secure your account using the identity and Access Management (IAM)? (Choose 2)

Which AWS service enables identity and access management?

With AWS IAM, you can manage which THREE of the following?

What is the best practice for applying permissions to many users who perform the same job?

Which of the followings is not an AWS IAM identity?

Which domain contains critical systems and applications that support and provide various services that perform core functions like authentication, authorization, and data management?

更多留学生实用工具

考试浏览器助手

风格化写作助手

论文查重助手

文献引用助手

课堂转译助手

课堂笔记助手

Quiz搜索助手

学校历年真题

智能刷题助手

智能匹配练习

希望你的学习变得更简单