Register
5:00
Stop
CISSP - Personnel Security - Job Rotation and Separation of Duties
Expert
1/5
During a secure code review, you find an API that requires token-based authentication. Unfortunately, the token is hardcoded in the application's source code. What is the most secure solution to remedy this problem?
a.
Add an expiry time to the hardcoded token.
b.
Encrypt the hardcoded token in the source code.
c.
Implement token generation and storage using a secure method, such as OAuth or JWT.
d.
Store the token in a configuration file outside the application's source code.
Expert