Google Cloud Professional Cloud Security Engineer Practice Exam

What should be done immediately after identifying vulnerable Google Cloud CLI sessions?

• A. Set the reauthentication frequency to a more secure duration.
• B. Terminate all active sessions right away.
• C. Upgrade all security software.
• D. Alert users about session vulnerabilities.

The correct answer is: Set the reauthentication frequency to a more secure duration.

The best course of action after identifying vulnerable Google Cloud CLI sessions is to set the reauthentication frequency to a more secure duration. This approach directly addresses the security posture of your sessions by ensuring that sessions do not remain active longer than necessary, reducing the window of opportunity for an attacker to exploit any vulnerabilities. By implementing a more secure reauthentication frequency, you enhance your security controls and minimize the risks associated with long-lived sessions. It encourages users to revalidate their identities more often, reducing the chances of unauthorized access via sessions that may have been left open unintentionally or hijacked. While terminating all active sessions might seem like a quick fix, it does not address the underlying issue of session management and can disrupt legitimate users who are logged in, potentially causing operational issues. Upgrading all security software is a proactive step but may not be the immediate response required to address the specific vulnerability found in the CLI sessions. This action tends to be part of a broader security maintenance strategy rather than a direct response to the vulnerability. Alerting users about session vulnerabilities is important for awareness and may help prevent future issues, but it does not provide an immediate solution to the identified vulnerabilities. The focus should be on implementing measures that improve security on the sessions themselves rather than just informing users