Secrets Management — CompTIA CySA+ (CS0-003) Practice Questions
Secrets management is the discipline of securely storing, distributing, rotating, and auditing sensitive configuration values such as API keys, database passwords, certificates, and tokens used by applications and infrastructure. The CySA+ exam includes secrets management as part of its coverage of secure development and cloud security controls, with emphasis on avoiding hardcoded secrets in source code and using dedicated vaults or environment variable injection instead. Poor secrets management is a leading cause of cloud environment breaches and supply-chain incidents. Candidates should know the risks of hardcoded or improperly scoped secrets and be familiar with the controls that mitigate those risks.
Free questions on secrets management
A company discovers that developers have been committing API keys and database credentials to a public GitHub repository. What should the analyst recommend as an IMMEDIATE mitigation?
Free question · medium · full answer + explanation