Question 1

As a Cloud Native developer, you have written a web service for your company. However, your security team has suggested that your web service should address Distributed Denial-of-Service (DDoS) attack. You are time-constrained and you need to ensure that this is implemented as soon as possible. What should you do in this scenario? (Choose the best answer.)

Options :

A : Use a third party service integration to Implement DDoS attack mitigation

B : Re-write your web service and implement rate limiting

C : Use the OCI Virtual Cloud Network (VCN) segregation to control DDoS.

D : Use the OCI API Gateway service and configure rate limiting.

Answer: D

Question 2

With the volume of communication that can happen between different components in cloud-native applications, it is vital to not only test functionality, but also service resiliency. Which statement is true regarding service resiliency?

Options :

A : Resiliency is about recovering from failures without downtime or dataloss.

B : A goal of resiliency is not to bring a service to a functioning state after a failure.

C : Resiliency testing can be only done in a test environment.

D : Resiliency is about avoiding failures.

Answer: A

Question 3

You are developing a serverless application with Oracle Functions. Your function needs to store state in adatabase. Your corporate security Standards mandate encryption of secret information like databasepasswords.As a function developer, which approach should you follow to satisfy this security requirement?

Options :

A : Use the Oracle Cloud Infrastructure Console and enter the password in the function configuration section in the provided input field.

B : Use Oracle Cloud Infrastructure Key Management to auto-encrypt the password. It will inject the auto-decrypted password inside your function container

C : Encrypt the password using Oracle Cloud Infrastructure Key Management. Decrypt this password in your function code withthe generated key.

D : All function configuration variables are automatically encrypted by Oracle Functions.

Answer: C

Question 4

You have been asked to create a stateful application deployed in Oracle Cloud Infrastructure (OCI) ContainerEngine for Kubernetes (OKE) that requires all ofyour worker nodes to mount and write data to persistentvolumes.Which two OCI storage services should you use?

Options :

A : Use OCI File Services as persistent volume.

B : Use GlusterFS as persistent volume.

C : Use OCI Block Volume backed persistent volume.

D : Use open source storage solutions on top of OCI.

E : Use OCI Object Storage as persistent volume.

Answer: A,C

Question 5

Which two "Action Type" options are NOT available in an Oracle Cloud Infrastructure (OCI) Events rule definition?

Options :

A : Email

B : Streaming

C : Slack

D : Functions

E : Notifications

Answer: A,C