You have a GKE cluster running with Confidential VMs to handle sensitive workloads. How would you ensure that the Kubernetes agent also maintains the confidentiality of sensitive data?
Choose an answer
Tap an option to check your answer.
Correct answer: Use a combination of Binary Authorization and Confidential VMs..
Why this is the answer
*Explanation:* Use a combination of Binary Authorization and Confidential VMs. Shielded GKE Nodes provide node identity verification but don't ensure data confidentiality in Kubernetes. Implementing a custom Kubernetes agent is not recommended for stability reasons. Workload Identity deals with service-to-service authentication, not data confidentiality. Disk encryption doesn't guarantee confidentiality within Kubernetes. By using Binary Authorization for secure deployments and Confidential VMs, you can maintain the confidentiality of sensitive data within the Kubernetes cluster.
Pass your exam — without the endless answer hunt
Get every verified question and explanation for this exam in one place, and save hours of prep. 1,000+ certifications · 20+ languages · free to start.
Pass your exam faster → No card needed