Best Google Cloud Product for Metadata Inventory Service
Question
Which Google Cloud product would be best suited to serve as a metadata inventory service, enabling customers to have a view of all the GCP and Anthos assets across projects and services?
Answers
Explanations
Click on the arrows to vote for the correct answer
A. B. C. D.Correct Answer: C.
Option A is incorrect.
Access Transparency & Access Approval help provide visibility and control by facilitating admin access logs and approval controls.
Option B is incorrect.
Binary Authorization helps ensure deployment of trusted container images on Google Kubernetes Engine (GKE) or Cloud Run.
Option C is correct.
Cloud Asset Inventory is a metadata inventory service that facilitates customers to have a view of all the GCP and Anthos assets across projects and services, along with enabling them to monitor and analyze all the GCP and Anthos assets across projects and services.
Option D is incorrect.
Confidential Computing helps customers encrypt sensitive data while the data is in-use.
https://cloud.google.com/access-transparency https://cloud.google.com/binary-authorization https://cloud.google.com/asset-inventory https://cloud.google.com/confidential-computingThe best-suited Google Cloud product to serve as a metadata inventory service, enabling customers to have a view of all the GCP and Anthos assets across projects and services is Cloud Asset Inventory (Option C).
Cloud Asset Inventory is a managed service provided by Google Cloud Platform (GCP) that enables customers to discover, track, and manage all resources and services in their GCP environment. The service provides a comprehensive view of the entire GCP infrastructure, including assets in projects, folders, and organizations. It allows users to view and analyze metadata information about resources, including resource types, configuration settings, relationships, and other pertinent details.
Cloud Asset Inventory also provides a historical view of asset metadata over time, allowing users to track changes and identify potential security risks. Users can query metadata using Cloud Asset Inventory API and export metadata to BigQuery or Cloud Storage.
Access Transparency & Access Approval (Option A) is a service that provides customers with visibility into Google employee access to their data. It is primarily designed for auditing purposes and ensuring compliance with data privacy regulations.
Binary Authorization (Option B) is a security feature that allows users to enforce controls on container images deployed on Kubernetes Engine. It is designed to prevent the deployment of unauthorized or potentially malicious container images in the environment.
Confidential Computing (Option D) is a set of technologies that provides hardware-based security mechanisms to protect sensitive data while in use. It is primarily designed for workloads that require high levels of security and compliance, such as healthcare or financial services.
In summary, Cloud Asset Inventory is the best-suited Google Cloud product to serve as a metadata inventory service, enabling customers to have a view of all the GCP and Anthos assets across projects and services, as it provides comprehensive visibility and management of all resources and services in the GCP environment.
